Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,299
Erlang
31
GitHub Actions
21
Go
2,064
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

46 advisories

Loading
Memory corruption when input parameter validation for number of fences is missing for fence frame... Moderate Unreviewed
CVE-2024-33041 was published Jan 6, 2025
Memory corruption while parsing sensor packets in camera driver, user-space variable is used... Moderate Unreviewed
CVE-2024-33036 was published Dec 2, 2024
On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not... Critical Unreviewed
CVE-2017-11076 was published Nov 26, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... Moderate Unreviewed
CVE-2024-42388 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows to... Moderate Unreviewed
CVE-2024-42383 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed
CVE-2024-42386 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... Moderate Unreviewed
CVE-2024-42387 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... Moderate Unreviewed
CVE-2024-42389 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... Moderate Unreviewed
CVE-2024-42391 was published Nov 18, 2024
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an... Moderate Unreviewed
CVE-2024-42390 was published Nov 18, 2024
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original... Moderate Unreviewed
CVE-2024-23377 was published Nov 4, 2024
In an out-of-memory scenario an allocation could fail but free would have been called on the... High Unreviewed
CVE-2024-6603 was published Jul 9, 2024
Memory corruption while submitting a large list of sync points in an AUX command to the... High Unreviewed
CVE-2023-33106 was published Dec 5, 2023
Memory corruption when the payload received from firmware is not as per the expected protocol size. High Unreviewed
CVE-2024-21475 was published May 6, 2024
Memory corruption in Audio during playback with speaker protection. High Unreviewed
CVE-2023-33033 was published Jan 2, 2024
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces. High Unreviewed
CVE-2023-28564 was published Sep 5, 2023
Memory corruption while parsing beacon/probe response frame when AP sends more supported links in... Critical Unreviewed
CVE-2023-43553 was published Mar 4, 2024
Memory corruption in Audio while calling START command on host voice PCM multiple times for the... Moderate Unreviewed
CVE-2023-33067 was published Feb 6, 2024
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS... High Unreviewed
CVE-2023-43513 was published Feb 6, 2024
Memory corruption in Modem while processing security related configuration before AS Security... Critical Unreviewed
CVE-2023-24855 was published Oct 3, 2023
Memory corruption in Audio while running invalid audio recording from ADSP. High Unreviewed
CVE-2023-33079 was published Dec 5, 2023
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption. High Unreviewed
CVE-2023-22387 was published Jul 4, 2023
Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM High Unreviewed
CVE-2022-25694 was published Mar 10, 2023
Memory corruption while validating the TID to Link Mapping action request frame, when a station... High Unreviewed
CVE-2023-43534 was published Feb 6, 2024
Memory corruption when malformed message payload is received from firmware. High Unreviewed
CVE-2023-43516 was published Feb 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database