Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,859 advisories

Loading
Out-of-bounds Write in actix-web Critical
CVE-2018-25026 was published for actix-web (Rust) Jan 6, 2022
Out-of-bounds Write in actix-web Critical
CVE-2018-25025 was published for actix-web (Rust) Jan 6, 2022
The calling logic for WhatsApp for Android prior to v2.21.23, WhatsApp Business for Android prior... Critical Unreviewed
CVE-2021-24042 was published Jan 5, 2022
The screen lock module has a Stack-based Buffer Overflow vulnerability.Successful exploitation of... Critical Unreviewed
CVE-2021-39990 was published Jan 4, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in check_bad_address (called from... Critical Unreviewed
CVE-2021-45951 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in dhcp_reply (called from dhcp_packet and FuzzDhcp). Critical Unreviewed
CVE-2021-45952 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from hash_questions and... Critical Unreviewed
CVE-2021-45953 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from answer_auth and... Critical Unreviewed
CVE-2021-45954 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called from FuzzResizePacket and... Critical Unreviewed
CVE-2021-45955 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). Critical Unreviewed
CVE-2021-45956 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in answer_request (called from FuzzAnswerTheRequest... Critical Unreviewed
CVE-2021-45957 was published Jan 2, 2022
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle... Critical Unreviewed
CVE-2021-37566 was published Dec 27, 2021
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated... Critical Unreviewed
CVE-2021-45637 was published Dec 27, 2021
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated... Critical Unreviewed
CVE-2021-45638 was published Dec 27, 2021
A stack-based buffer overflow vulnerability exists in the Web Manager SslGenerateCSR... Critical Unreviewed
CVE-2021-21887 was published Dec 23, 2021
A stack-based buffer overflow vulnerability exists in the Web Manager Ping functionality of... Critical Unreviewed
CVE-2021-21889 was published Dec 23, 2021
A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality... Critical Unreviewed
CVE-2021-21890 was published Dec 23, 2021
A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality... Critical Unreviewed
CVE-2021-21891 was published Dec 23, 2021
A stack-based buffer overflow vulnerability exists in the Web Manager FsUnmount functionality of... Critical Unreviewed
CVE-2021-21892 was published Dec 23, 2021
A stack-based buffer overflow vulnerability exists in the CMA check_udp_crc function of Garrett... Critical Unreviewed
CVE-2021-21903 was published Dec 23, 2021
An out-of-bounds write vulnerability exists in the RS-274X aperture macro variables handling... Critical Unreviewed
CVE-2021-40393 was published Dec 23, 2021
A stack buffer overflow was discovered on Realtek RTL8195AM device before 2.0.10, it exists in... Critical Unreviewed
CVE-2021-39306 was published Dec 23, 2021
In NfcTag::discoverTechnologies (activation) of NfcTag.cpp, there is a possible out of bounds... Critical Unreviewed
CVE-2021-0956 was published Dec 16, 2021
stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a... Critical Unreviewed
CVE-2021-45078 was published Dec 16, 2021
A stack-based buffer overflow in handle_request function in DHT.c in toxcore 0.1.9 through 0.1.11... Critical Unreviewed
CVE-2021-44847 was published Dec 14, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database