GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
124 advisories
Filter by severity
CAI Content Credentials is affected by an Integer Underflow (Wrap or Wraparound) vulnerability...
Moderate
Unreviewed
CVE-2026-48298
was published
Jul 15, 2026
CAI Content Credentials is affected by an Integer Underflow (Wrap or Wraparound) vulnerability...
Moderate
Unreviewed
CVE-2026-48296
was published
Jul 15, 2026
In the Linux kernel, the following vulnerability has been resolved:
thunderbolt: Reject zero...
Moderate
Unreviewed
CVE-2026-53150
was published
Jun 25, 2026
FatFs R0.16 and earlier exhibits a stale dirty-cache skip via unsigned-subtraction wrap in f_read...
Moderate
Unreviewed
CVE-2026-6685
was published
Jul 1, 2026
In the Linux kernel, the following vulnerability has been resolved:
usb: gadget: f_ncm: validate...
Moderate
Unreviewed
CVE-2026-31617
was published
Apr 24, 2026
Nmap through 7.99 does not keep the IPv6 extension-header walk within the captured packet in...
Moderate
Unreviewed
CVE-2026-58058
was published
Jun 28, 2026
In the Linux kernel, the following vulnerability has been resolved:
apparmor: avoid per-cpu hold...
Moderate
Unreviewed
CVE-2026-45884
was published
May 27, 2026
An integer underflow vulnerability was found in MIT krb5 in the berval2tl_data() function in...
Moderate
Unreviewed
CVE-2026-11850
was published
Jun 11, 2026
ImageMagick: Heap Buffer Over-Read in IPTC encoder
Moderate
CVE-2026-42326
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
May 18, 2026
A flaw was found in 389 Directory Server. The SMD5 password storage plugin performs unsigned...
Moderate
Unreviewed
CVE-2026-11789
was published
Jun 9, 2026
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix transaction abort...
Moderate
Unreviewed
CVE-2026-43359
was published
May 8, 2026
In the Linux kernel, the following vulnerability has been resolved:
media: chips-media: wave5:...
Moderate
Unreviewed
CVE-2026-43301
was published
May 8, 2026
CAI Content Credentials versions 0.78.2, 0.7.0 and earlier are affected by an Integer Underflow ...
Moderate
Unreviewed
CVE-2026-34667
was published
May 12, 2026
CAI Content Credentials versions 0.78.2, 0.7.0 and earlier are affected by an Integer Underflow ...
Moderate
Unreviewed
CVE-2026-34672
was published
May 12, 2026
In the Linux kernel, the following vulnerability has been resolved:
NFSD: Fix ia_size underflow
...
Moderate
Unreviewed
CVE-2022-48828
was published
Jul 16, 2024
GoBGP has an Integer Underflow Issue
Moderate
CVE-2026-7736
was published
for
github.com/osrg/gobgp/v4
(Go)
May 4, 2026
In MIT Kerberos 5 (aka krb5) before 1.22.3, there is an integer underflow and resultant out-of...
Moderate
Unreviewed
CVE-2026-40356
was published
Apr 28, 2026
In the Linux kernel, the following vulnerability has been resolved:
wifi: mac80211: Fix...
Moderate
Unreviewed
CVE-2026-31551
was published
Apr 24, 2026
nimiq-account: Vesting insufficient funds error can panic
Moderate
CVE-2026-34064
was published
for
nimiq-account
(Rust)
Apr 22, 2026
ImageMagick has a heap-Buffer-Overflow write of a single zero byte when parsing xml.
Moderate
CVE-2026-33899
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Apr 13, 2026
In libexif through 0.6.25, an integer underflow in size checking for Fuji and Olympus MakerNote...
Moderate
Unreviewed
CVE-2026-40386
was published
Apr 12, 2026
go-git: Maliciously crafted idx file can cause asymmetric memory consumption
Moderate
CVE-2026-34165
was published
for
github.com/go-git/go-git/v5
(Go)
Mar 30, 2026
A flaw was found in libsoup. An integer underflow vulnerability occurs when processing content...
Moderate
Unreviewed
CVE-2026-2369
was published
Mar 19, 2026
In the Linux kernel, the following vulnerability has been resolved:
vsock/virtio: fix potential...
Moderate
Unreviewed
CVE-2026-23069
was published
Feb 4, 2026
A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric...
Moderate
Unreviewed
CVE-2025-1924
was published
Feb 13, 2026
ProTip!
Advisories are also available from the
GraphQL API