Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,828
Erlang
36
GitHub Actions
33
Go
2,445
Maven
5,000+
npm
4,061
NuGet
723
pip
3,861
Pub
12
RubyGems
943
Rust
1,007
Swift
39
Unreviewed advisories
All unreviewed
5,000+

2,389 advisories

Loading
A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module... Moderate Unreviewed
CVE-2025-0678 was published Mar 3, 2025
A stack overflow flaw was found when reading a BFS file system. A crafted BFS filesystem may lead... Moderate Unreviewed
CVE-2024-45778 was published Mar 3, 2025
An integer overflow flaw was found in the BFS file system driver in grub2. When reading a file... Moderate Unreviewed
CVE-2024-45779 was published Mar 3, 2025
Transient DOS can occur while processing UCI command. Moderate Unreviewed
CVE-2024-53025 was published Mar 3, 2025
In da, there is a possible out of bounds read due to an integer overflow. This could lead to... Moderate Unreviewed
CVE-2025-20653 was published Mar 3, 2025
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix possible int... Moderate Unreviewed
CVE-2025-21736 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix integer overflows... Moderate Unreviewed
CVE-2025-21748 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: binfmt_flat: Fix integer... Moderate Unreviewed
CVE-2024-58010 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: printk: Fix signed integer... Moderate Unreviewed
CVE-2024-58017 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer... Moderate Unreviewed
CVE-2025-21711 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: rdma/cxgb4: Prevent... Moderate Unreviewed
CVE-2024-57973 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: rtc: tps6594: Fix integer... Moderate Unreviewed
CVE-2024-57953 was published Feb 27, 2025
There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve(),... Moderate Unreviewed
CVE-2025-0838 was published Feb 21, 2025
In barebox before 2025.01.0, ext4fs_read_symlink has an integer overflow for zalloc (adding one... High Unreviewed
CVE-2024-57262 was published Feb 19, 2025
In barebox before 2025.01.0, request2size in common/dlmalloc.c has an integer overflow, a related... High Unreviewed
CVE-2024-57261 was published Feb 19, 2025
An integer overflow in sqfs_inode_size in Das U-Boot before 2025.01-rc1 occurs in the symlink... High Unreviewed
CVE-2024-57254 was published Feb 19, 2025
An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc ... High Unreviewed
CVE-2024-57256 was published Feb 19, 2025
An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025.01-rc1 occurs via a crafted... High Unreviewed
CVE-2024-57255 was published Feb 19, 2025
Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted... High Unreviewed
CVE-2024-57258 was published Feb 19, 2025
An issue was discovered on Mercedes Benz NTG 6. A possible integer overflow exists in the user... Low Unreviewed
CVE-2023-34406 was published Feb 14, 2025
Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB.... Critical Unreviewed
CVE-2023-34399 was published Feb 14, 2025
Integer Overflow or Wraparound vulnerability in Lexmark International CX, XC, CS, et. Al. ... High Unreviewed
CVE-2024-11347 was published Feb 13, 2025
NVIDIA Triton Inference Server contains a vulnerability in the model loading API, where a user... Moderate Unreviewed
CVE-2024-53880 was published Feb 12, 2025
An integer overflow in the ASP could allow a privileged attacker to perform an out-of-bounds... Low Unreviewed
CVE-2023-20507 was published Feb 11, 2025
in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through integer overflow. Moderate Unreviewed
CVE-2025-0302 was published Feb 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database