Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,796
Maven
5,000+
npm
4,410
NuGet
772
pip
4,181
Pub
12
RubyGems
965
Rust
1,078
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,352 advisories

Loading
gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers... Critical Unreviewed
CVE-2025-67268 was published Jan 2, 2026
FontForge GUtils SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2025-15277 was published Dec 31, 2025
FontForge GUtils BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2025-15279 was published Dec 31, 2025
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-15275 was published Dec 31, 2025
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-15274 was published Dec 31, 2025
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-15272 was published Dec 31, 2025
pcap_ether_aton() is an auxiliary function in libpcap, it takes a string argument and returns a... Low Unreviewed
CVE-2025-11961 was published Dec 31, 2025
An issue was discovered in matio 1.5.28. A heap-based memory corruption can occur in... Critical Unreviewed
CVE-2025-50343 was published Dec 30, 2025
Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8. High Unreviewed
CVE-2025-66869 was published Dec 29, 2025
A buffer overflow vulnerability in function gnu_special in file cplus-dem.c in BinUtils 2.26... High Unreviewed
CVE-2025-66862 was published Dec 29, 2025
GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-14425 was published Dec 24, 2025
Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code... High Unreviewed
CVE-2025-12495 was published Dec 24, 2025
Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code... High Unreviewed
CVE-2025-12840 was published Dec 24, 2025
Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code... High Unreviewed
CVE-2025-12839 was published Dec 24, 2025
NSF Unidata NetCDF-C Dimension Name Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2025-14935 was published Dec 23, 2025
A maliciously crafted CATPRODUCT file, when parsed through certain Autodesk products, can force a... High Unreviewed
CVE-2025-10881 was published Dec 16, 2025
Exim before 4.99.1 allows remote heap corruption that will be further described on 2025-12-18. Moderate Unreviewed
CVE-2025-67896 was published Dec 14, 2025
In AzeoTech DAQFactory release 20.7 (Build 2555), the affected application is vulnerable to... High Unreviewed
CVE-2025-66587 was published Dec 11, 2025
In NrmmDecoder::DecodeSORTransparentContext of cn_NrmmDecoder.cpp, there is a possible out of... High Unreviewed
CVE-2025-36923 was published Dec 11, 2025
DNG SDK versions 1.7.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability... High Unreviewed
CVE-2025-64784 was published Dec 9, 2025
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an... High Unreviewed
CVE-2025-64678 was published Dec 9, 2025
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate... High Unreviewed
CVE-2025-64680 was published Dec 9, 2025
Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate... High Unreviewed
CVE-2025-64679 was published Dec 9, 2025
Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized... High Unreviewed
CVE-2025-62454 was published Dec 9, 2025
Heap-based buffer overflow in Windows Resilient File System (ReFS) allows an authorized attacker... High Unreviewed
CVE-2025-62456 was published Dec 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database