Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,667
Maven
5,000+
npm
4,295
NuGet
760
pip
4,073
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,462 advisories

Loading
pytorch v2.8.0 was discovered to display unexpected behavior when the components torch.rot90 and... Moderate Unreviewed
CVE-2025-55552 was published Sep 25, 2025
Integer overflow in V8 in Google Chrome prior to 140.0.7339.207 allowed a remote attacker to... High Unreviewed
CVE-2025-10892 was published Sep 24, 2025
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix qgroup reserve... Moderate Unreviewed
CVE-2022-49075 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: af_netlink: Fix shift out of... Moderate Unreviewed
CVE-2022-49197 was published Sep 23, 2025
In Artifex Ghostscript through 10.05.1, ocr_begin_page in devices/gdevpdfocr.c has an integer... Moderate Unreviewed
CVE-2025-59800 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: uaccess: fix integer... High Unreviewed
CVE-2022-49289 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: dmaengine: zynqmp_dma: In... Moderate Unreviewed
CVE-2022-49320 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: anx7625: Fix... Moderate Unreviewed
CVE-2022-49222 was published Sep 22, 2025
Dover Fueling Solutions ProGauge MagLink LX4 Devices fail to handle Unix time values beyond a... High Unreviewed
CVE-2025-55068 was published Sep 18, 2025
Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-7982 was published Sep 17, 2025
Ashlar-Vellum Cobalt VC6 File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-7985 was published Sep 17, 2025
This vulnerability affects Firefox < 143, Firefox ESR < 115.28, Firefox ESR < 140.3, Thunderbird ... High Unreviewed
CVE-2025-10533 was published Sep 16, 2025
Substance3D - Modeler versions 1.22.2 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2025-54259 was published Sep 10, 2025
Integer overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized... High Unreviewed
CVE-2025-54895 was published Sep 9, 2025
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-54106 was published Sep 9, 2025
Integer overflow or wraparound in Windows Kernel allows an authorized attacker to elevate... High Unreviewed
CVE-2025-54110 was published Sep 9, 2025
An integer overflow in the SMU could allow a privileged attacker to potentially write memory... Low Unreviewed
CVE-2023-31365 was published Sep 6, 2025
Insufficient parameter validation while allocating process space in the Trusted OS (TOS) may... Moderate Unreviewed
CVE-2021-26377 was published Sep 6, 2025
Failure to validate the address and size in TEE (Trusted Execution Environment) may allow a... Low Unreviewed
CVE-2021-46750 was published Sep 6, 2025
In lwis_test_register_io of lwis_device_test.c, there is a possible OOB Write due to an integer... Moderate Unreviewed
CVE-2025-36900 was published Sep 4, 2025
ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow High
CVE-2025-57803 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 26, 2025
mescuwa
Credited to mescuwa
imagemagick: integer overflows in MNG magnification High
CVE-2025-55154 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 25, 2025
An integer overflow vulnerability exists in the GDF parsing functionality of The Biosig Project... Critical Unreviewed
CVE-2025-52581 was published Aug 25, 2025
An integer overflow vulnerability exists in the ABF parsing functionality of The Biosig Project... Critical Unreviewed
CVE-2025-53518 was published Aug 25, 2025
Unlimited memory allocation in redis protocol parser in Apache bRPC (all versions < 1.14.1) on... High Unreviewed
CVE-2025-54472 was published Aug 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database