Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,290
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,743
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

45 advisories

Loading
Memory corruption while parsing sensor packets in camera driver, user-space variable is used... Moderate Unreviewed
CVE-2024-33036 was published Dec 2, 2024
On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not... Critical Unreviewed
CVE-2017-11076 was published Nov 26, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... Moderate Unreviewed
CVE-2024-42387 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... Moderate Unreviewed
CVE-2024-42388 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... Moderate Unreviewed
CVE-2024-42389 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows to... Moderate Unreviewed
CVE-2024-42383 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed
CVE-2024-42386 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... Moderate Unreviewed
CVE-2024-42391 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... Moderate Unreviewed
CVE-2024-42390 was published Nov 18, 2024
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original... Moderate Unreviewed
CVE-2024-23377 was published Nov 4, 2024
In an out-of-memory scenario an allocation could fail but free would have been called on the... High Unreviewed
CVE-2024-6603 was published Jul 9, 2024
Memory corruption when the payload received from firmware is not as per the expected protocol size. High Unreviewed
CVE-2024-21475 was published May 6, 2024
An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller... High Unreviewed
CVE-2024-1013 was published Mar 18, 2024
Memory corruption while parsing beacon/probe response frame when AP sends more supported links in... Critical Unreviewed
CVE-2023-43553 was published Mar 4, 2024
Memory corruption in Audio while processing RT proxy port register driver. High Unreviewed
CVE-2023-33066 was published Mar 4, 2024
Memory corruption while validating the TID to Link Mapping action request frame, when a station... High Unreviewed
CVE-2023-43534 was published Feb 6, 2024
Memory corruption in Audio while calling START command on host voice PCM multiple times for the... Moderate Unreviewed
CVE-2023-33067 was published Feb 6, 2024
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS... High Unreviewed
CVE-2023-43513 was published Feb 6, 2024
Memory corruption when malformed message payload is received from firmware. High Unreviewed
CVE-2023-43516 was published Feb 6, 2024
The session index variable in PCM host voice audio driver initialized before PCM open, accessed... High Unreviewed
CVE-2023-33110 was published Jan 2, 2024
Memory corruption in Audio during playback with speaker protection. High Unreviewed
CVE-2023-33033 was published Jan 2, 2024
An out-of-bounds memory access flaw was found in the io_uring SQ/CQ rings functionality in the... Moderate Unreviewed
CVE-2023-6560 was published Dec 9, 2023
Memory corruption in Audio while running invalid audio recording from ADSP. High Unreviewed
CVE-2023-33079 was published Dec 5, 2023
Memory corruption while submitting a large list of sync points in an AUX command to the... High Unreviewed
CVE-2023-33106 was published Dec 5, 2023
Memory Corruption in Multi-mode Call Processor while processing bit mask API. Critical Unreviewed
CVE-2023-22388 was published Nov 14, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database