Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,488
Maven
5,000+
npm
4,104
NuGet
735
pip
3,923
Pub
12
RubyGems
945
Rust
1,017
Swift
39
Unreviewed advisories
All unreviewed
5,000+

120 advisories

Loading
ImageMagick BlobStream Forward-Seek Under-Allocation Low
CVE-2025-57807 was published for Magick.NET-Q16-HDRI-OpenMP-arm64 (NuGet) Sep 5, 2025
mescuwa
An Incorrect Calculation of Buffer Size vulnerability in the routing protocol daemon (rpd) of... High Unreviewed
CVE-2025-52955 was published Jul 11, 2025
Memory corruption while processing video packets received from video firmware. High Unreviewed
CVE-2025-27042 was published Jul 8, 2025
OpenVM allows the byte decomposition of pc in AUIPC chip to overflow High
CVE-2025-46723 was published for openvm (Rust) May 5, 2025
jonathanpwang
quickjs-ng through 0.9.0 has an incorrect size calculation in JS_ReadBigInt for a BigInt, leading... Moderate Unreviewed
CVE-2025-46688 was published Apr 27, 2025
In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after... Low Unreviewed
CVE-2025-43965 was published Apr 23, 2025
In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled ... Low Unreviewed
CVE-2025-46393 was published Apr 23, 2025
In OpenBSD 7.6 before errata 006 and OpenBSD 7.5 before errata 015, traffic sent over wg(4) could... High Unreviewed
CVE-2025-30334 was published Mar 20, 2025
Paragon Partition Manager version 7.9.1 contains an arbitrary kernel memory vulnerability... High Unreviewed
CVE-2025-0288 was published Mar 3, 2025
When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate... High Unreviewed
CVE-2025-0395 was published Jan 22, 2025
CWE-131: Incorrect Calculation of Buffer Size vulnerability exists that could cause Denial-of... High Unreviewed
CVE-2024-11425 was published Jan 17, 2025
In SiWx91x devices, the SHA2/224 algorithm returns a hash of 256 bits instead of 224 bits. This... High Unreviewed
CVE-2024-8361 was published Jan 7, 2025
In writeToParcel and createFromParcel of DcParamObject.java, there is a permission bypass due to... High Unreviewed
CVE-2017-13315 was published Nov 19, 2024
A negative-size-param in tsMuxer version nightly-2024-04-05-01-53-02 allows attackers to cause... Moderate Unreviewed
CVE-2024-49776 was published Nov 15, 2024
The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet... Moderate Unreviewed
CVE-2024-28052 was published Oct 30, 2024
In the Linux kernel, the following vulnerability has been resolved: binfmt_elf_fdpic: fix AUXV... Moderate Unreviewed
CVE-2024-46684 was published Sep 13, 2024
Incorrect Calculation of Buffer Size (CWE-131) in the Controller 6000 and Controller 7000 OSDP... Moderate Unreviewed
CVE-2024-39808 was published Sep 11, 2024
A malicious value of size in a structure of packed libnv can cause an integer overflow, leading... Critical Unreviewed
CVE-2024-45287 was published Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sof-nau8825:... Moderate Unreviewed
CVE-2022-48889 was published Aug 21, 2024
In the Linux kernel, the following vulnerability has been resolved: riscv, bpf: Fix out-of... High Unreviewed
CVE-2024-43843 was published Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Fix Virtual... Moderate Unreviewed
CVE-2024-42259 was published Aug 14, 2024
An unauthenticated remote attacker can use a malicious OPC UA client to send a crafted request to... High Unreviewed
CVE-2024-5000 was published Jun 4, 2024
An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000... High Unreviewed
CVE-2024-30405 was published Apr 12, 2024
In the Linux kernel, the following vulnerability has been resolved: l2tp: pass correct message... Moderate Unreviewed
CVE-2024-26752 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/i915/dsc: Fix the macro... Moderate Unreviewed
CVE-2024-26721 was published Apr 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database