Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

99 advisories

Loading
An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the... High Unreviewed
CVE-2019-10131 was published May 24, 2022
Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3... Moderate Unreviewed
CVE-2011-1027 was published May 17, 2022
Off-by-one error in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and... Critical Unreviewed
CVE-2016-10160 was published May 14, 2022
Off-by-one error in the PDF functionality in Google Chrome before 25.0.1364.97 on Windows and... Moderate Unreviewed
CVE-2013-0897 was published May 14, 2022
An issue was discovered in Botan 1.11.32 through 2.x before 2.6.0. An off-by-one error when... High Unreviewed
CVE-2018-9860 was published May 13, 2022
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-s7comm.c had an infinite... High Unreviewed
CVE-2018-7329 was published May 13, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, due to an off-by... High Unreviewed
CVE-2017-9720 was published May 13, 2022
axTLS version 1.5.3 has a coding error in the ASN.1 parser resulting in the year (19)50 of... Moderate Unreviewed
CVE-2017-1000416 was published May 13, 2022
A flaw was found in the Linux kernel's handling of clearing SELinux attributes on /proc/pid/attr... Moderate Unreviewed
CVE-2017-2618 was published May 13, 2022
Off-by-one error in Google V8, as used in Google Chrome before 14.0.835.163, allows remote... Moderate Unreviewed
CVE-2011-2852 was published May 13, 2022
Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local... Moderate Unreviewed
CVE-2011-2695 was published May 13, 2022
Off-by-one error in the pci_read function in the ACPI PCI hotplug interface (hw/acpi/pcihp.c) in... Moderate Unreviewed
CVE-2014-5388 was published May 13, 2022
The cfg80211_wext_giwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6... Low Unreviewed
CVE-2010-2955 was published May 13, 2022
Off-by-one error in the toAlphabetic function in rendering/RenderListMarker.cpp in WebCore in... High Unreviewed
CVE-2010-1773 was published May 13, 2022
An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c is... Critical Unreviewed
CVE-2018-14599 was published May 13, 2022
UltraVNC revision 1206 has multiple off-by-one vulnerabilities in VNC client code connected with... Critical Unreviewed
CVE-2019-8268 was published May 13, 2022
UltraVNC revision 1211 has multiple off-by-one vulnerabilities in VNC server code, which can... Critical Unreviewed
CVE-2019-8272 was published May 13, 2022
QEMU (aka Quick Emulator) built with the Rocker switch emulation support is vulnerable to an off... Moderate Unreviewed
CVE-2015-8701 was published May 13, 2022
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one... Moderate Unreviewed
CVE-2018-14679 was published May 13, 2022
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one... High Unreviewed
CVE-2018-14682 was published May 13, 2022
Multiple off-by-one errors in the WW8DopTypography::ReadFromMem function in oowriter in... High Unreviewed
CVE-2010-3454 was published May 13, 2022
Off-by-one error in the GpFont::SetData function in gdiplus.dll in Microsoft GDI+ on Windows XP... Moderate Unreviewed
CVE-2009-1217 was published May 2, 2022
Multiple off-by-one errors in libpng before 1.2.32beta01, and 1.4 before 1.4.0beta34, allow... Moderate Unreviewed
CVE-2008-3964 was published May 2, 2022
Off-by-one error in the iov_iter_advance function in mm/filemap.c in the Linux kernel before 2.6... Moderate Unreviewed
CVE-2008-3535 was published May 2, 2022
Off-by-one error in the PyLocale_strxfrm function in Modules/_localemodule.c for Python 2.4 and 2... Moderate Unreviewed
CVE-2007-2052 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database