Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

5,450 advisories

Loading
In ppmp_unprotect_buf of drm/code/drm_fw.c, there is a possible memory corruption due to a logic... High Unreviewed
CVE-2024-44093 was published Sep 13, 2024
In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible memory corruption due to improper... High Unreviewed
CVE-2024-44094 was published Sep 13, 2024
In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible corrupt memory due to a logic... High Unreviewed
CVE-2024-44095 was published Sep 13, 2024
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-43760 was published Sep 13, 2024
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-45108 was published Sep 13, 2024
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-45109 was published Sep 13, 2024
Premiere Pro versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-39384 was published Sep 13, 2024
After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-41859 was published Sep 13, 2024
After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-39381 was published Sep 13, 2024
Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-39377 was published Sep 13, 2024
An issue was discovered in WibuKey64.sys in WIBU-SYSTEMS WibuKey before v6.70 and fixed in v.6.70... High Unreviewed
CVE-2024-45181 was published Sep 12, 2024
In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error... High Unreviewed
CVE-2024-45026 was published Sep 11, 2024
In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix data... High Unreviewed
CVE-2024-45023 was published Sep 11, 2024
Audition versions 24.4.1, 23.6.6 and earlier are affected by an out-of-bounds write vulnerability... High Unreviewed
CVE-2024-39378 was published Sep 11, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker... High Unreviewed
CVE-2024-8636 was published Sep 11, 2024
N/A High Unreviewed
CVE-2024-31336 was published Sep 11, 2024
D-Link DI-8100 v16.07.26A1 has a stack overflow vulnerability in the dbsrv_asp function. High Unreviewed
CVE-2024-44375 was published Sep 9, 2024
An insufficient boundary validation in the USB code could lead to an out-of-bounds write on the... High Unreviewed
CVE-2024-32668 was published Sep 5, 2024
Heap-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows local attackers... High Unreviewed
CVE-2024-34660 was published Sep 4, 2024
Stack-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows remote... High Unreviewed
CVE-2024-34657 was published Sep 4, 2024
Out of bounds write in V8 in Google Chrome prior to 128.0.6613.119 allowed a remote attacker to... High Unreviewed
CVE-2024-7970 was published Sep 4, 2024
Memory corruption when Alternative Frequency offset value is set to 255. High Unreviewed
CVE-2024-33042 was published Sep 2, 2024
Memory corruption when BTFM client sends new messages over Slimbus to ADSP. High Unreviewed
CVE-2024-33045 was published Sep 2, 2024
Memory corruption when user provides data for FM HCI command control operations. High Unreviewed
CVE-2024-33052 was published Sep 2, 2024
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA. High Unreviewed
CVE-2024-33038 was published Sep 2, 2024
ProTip! Advisories are also available from the GraphQL API