GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,076
Erlang
29
GitHub Actions
19
Go
1,895
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
862
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
283 advisories
Filter by severity
Possible memory corruption in BSI module due to improper validation of parameter count in...
High
Unreviewed
CVE-2020-11187
was published
May 24, 2022
Out of bound write while copying data using IOCTL due to lack of check of array index received...
High
Unreviewed
CVE-2020-11146
was published
May 24, 2022
In x/text in Go 1.15.4, a "slice bounds out of range" panic occurs in language...
High
Unreviewed
CVE-2020-28852
was published
May 24, 2022
In x/text in Go 1.15.4, an "index out of range" panic occurs in language.ParseAcceptLanguage...
High
Unreviewed
CVE-2020-28851
was published
May 24, 2022
dhowden tag panic due to out-of-bounds read
Moderate
CVE-2020-29244
was published
for
github.com/dhowden/tag
(Go)
May 24, 2022
dhowden tag panic due to out-of-bounds read
Moderate
CVE-2020-29245
was published
for
github.com/dhowden/tag
(Go)
May 24, 2022
dhowden tag panic due to out-of-bounds read
Moderate
CVE-2020-29243
was published
for
github.com/dhowden/tag
(Go)
May 24, 2022
lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has...
Moderate
Unreviewed
CVE-2020-20412
was published
May 24, 2022
Garmin Forerunner 235 before 8.20 is affected by: Array index error. The component is: ConnectIQ...
Critical
Unreviewed
CVE-2020-27485
was published
May 24, 2022
Garmin Forerunner 235 before 8.20 is affected by: Array index error. The component is: ConnectIQ...
Critical
Unreviewed
CVE-2020-27483
was published
May 24, 2022
u'When a non standard SIP sigcomp message is received from the network, then there may be chances...
Critical
Unreviewed
CVE-2020-3639
was published
May 24, 2022
u'Incorrect validation of ring context fetched from host memory can lead to memory overflow' in...
High
Unreviewed
CVE-2020-3632
was published
May 24, 2022
u'Buffer overflow can happen as part of SIP message packet processing while storing values in...
Critical
Unreviewed
CVE-2020-3673
was published
May 24, 2022
u'Buffer overflow occurs while processing SIP message packet due to lack of check of index...
Critical
Unreviewed
CVE-2020-3654
was published
May 24, 2022
u'Array index underflow issue in adsp driver due to improper check of channel id before used as...
High
Unreviewed
CVE-2020-11174
was published
May 24, 2022
u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access...
High
Unreviewed
CVE-2019-10527
was published
May 24, 2022
Possible memory corruption in perfservice due to improper validation array length taken from user...
Moderate
Unreviewed
CVE-2020-3676
was published
May 24, 2022
Out of bound write can happen due to lack of check of array index value while parsing SDP...
High
Unreviewed
CVE-2019-14080
was published
May 24, 2022
Out of bound write can occur in radio measurement request if STA receives multiple invalid rrm...
High
Unreviewed
CVE-2019-14131
was published
May 24, 2022
Out of bound access due to access of uninitialized memory segment in an array of pointers while...
High
Unreviewed
CVE-2019-14044
was published
May 24, 2022
Array index error in smal_decode_segment function in LibRaw before 0.17.1 allows context...
Critical
Unreviewed
CVE-2015-8366
was published
May 24, 2022
Multiple memory corruption issues were addressed with improved memory handling. This issue is...
Moderate
Unreviewed
CVE-2019-8587
was published
May 24, 2022
Possible out of bounds write in a MT SMS/SS scenario due to improper validation of array index in...
High
Unreviewed
CVE-2019-2320
was published
May 24, 2022
Nova 5i pro and Nova 5 smartphones with versions earlier than 9.1.1.190(C00E190R6P2)and Versions...
High
Unreviewed
CVE-2019-5210
was published
May 24, 2022
Improper validation of array index causes OOB write and then leads to memory corruption in MMCP...
High
Unreviewed
CVE-2019-2258
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API