Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

5,563 advisories

Loading
Exiv2 has an out-of-bounds read in QuickTimeVideo::NikonTagsDecoder Moderate
CVE-2024-24826 was published for exiv2 (pip) Oct 17, 2024
westonsteimel
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a... High Unreviewed
CVE-2024-47965 was published Oct 10, 2024
An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2024-39516 was published Oct 9, 2024
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of... High Unreviewed
CVE-2024-33049 was published Oct 7, 2024
In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing... High Unreviewed
CVE-2024-41311 was published Oct 15, 2024
An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c can read the initial byte... Critical Unreviewed
CVE-2023-41360 was published Aug 29, 2023
Transient DOS while parsing the MBSSID IE from the beacons when IE length is 0. High Unreviewed
CVE-2024-33071 was published Oct 7, 2024
Transient DOS while parsing ESP IE from beacon/probe response frame. High Unreviewed
CVE-2024-33070 was published Oct 7, 2024
Information disclosure while parsing the multiple MBSSID IEs from the beacon. High Unreviewed
CVE-2024-33064 was published Oct 7, 2024
Transient DOS while parsing probe response and assoc response frame. High Unreviewed
CVE-2024-38397 was published Oct 7, 2024
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of... High Unreviewed
CVE-2024-33073 was published Oct 7, 2024
An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not... Critical Unreviewed
CVE-2023-38428 was published Jul 18, 2023
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply... Critical Unreviewed
CVE-2022-23096 was published Feb 10, 2022
Out-of-bounds Read in Pillow Moderate
CVE-2022-22816 was published for Pillow (pip) Jan 12, 2022
tdunlap607
execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out... High Unreviewed
CVE-2024-48958 was published Oct 10, 2024
execute_filter_audio in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out... High Unreviewed
CVE-2024-48957 was published Oct 10, 2024
In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2024-20095 was published Oct 7, 2024
In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2024-20096 was published Oct 7, 2024
In wlan driver, there is a possible out of bounds read due to improper input validation. This... Moderate Unreviewed
CVE-2024-20102 was published Oct 7, 2024
Out of bounds read in GPU Video in Google Chrome prior to 111.0.5563.110 allowed a remote... High Unreviewed
CVE-2023-1532 was published Mar 21, 2023
In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2024-20097 was published Oct 7, 2024
In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2024-20093 was published Oct 7, 2024
In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2024-20091 was published Oct 7, 2024
Out of bounds read in Pillow High
CVE-2021-25291 was published for Pillow (pip) Mar 29, 2021
tdunlap607 sunSUNQ
Pillow Out-of-bounds Read vulnerability High
CVE-2021-25288 was published for Pillow (pip) Jun 8, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database