GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,295
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,107
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
1,755 advisories
Filter by severity
ImageMagick before 7.1.2-19 contains a heap buffer overflow vulnerability in the magnify...
Moderate
Unreviewed
CVE-2026-56372
was published
Jul 11, 2026
pymonocypher: Potential heap buffer overflow on nb_blocks in argon2i_32 when provided buffer is too small
Moderate
CVE-2026-53720
was published
for
pymonocypher
(pip)
Jul 9, 2026
Heap-based buffer overflow vulnerability in Samsung Open Source Escargot allows Overflow Buffers....
Moderate
Unreviewed
CVE-2026-58306
was published
Jul 9, 2026
Inappropriate implementation in DOM in Google Chrome prior to 150.0.7871.115 allowed a remote...
High
Unreviewed
CVE-2026-15123
was published
Jul 9, 2026
Catapult DCT2000 protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows...
Moderate
Unreviewed
CVE-2026-15174
was published
Jul 8, 2026
TLS ECH decryptor crash in Wireshark 4.6.0 to 4.6.6 allows denial of service
Moderate
Unreviewed
CVE-2026-15165
was published
Jul 8, 2026
Crash in ciscodump 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service
Moderate
Unreviewed
CVE-2026-15164
was published
Jul 8, 2026
UMTS FP protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of...
Moderate
Unreviewed
CVE-2026-15169
was published
Jul 8, 2026
Z39.50 protocol dissector crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of...
Moderate
Unreviewed
CVE-2026-15170
was published
Jul 8, 2026
pcapng file parser crash in Wireshark 4.6.0 to 4.6.6 allows denial of service
Moderate
Unreviewed
CVE-2026-15173
was published
Jul 8, 2026
A heap bufferflow in pcfReadFont() due to missing glyph bounds checking in libXfont2 before 2.0.8...
High
Unreviewed
CVE-2026-56002
was published
Jul 8, 2026
A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files...
High
Unreviewed
CVE-2026-56003
was published
Jul 8, 2026
Local attackers with a X connection able to provide PCX fonts to the X
server xorg-server before...
High
Unreviewed
CVE-2026-55999
was published
Jul 8, 2026
A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing...
High
Unreviewed
CVE-2026-56001
was published
Jul 8, 2026
GNU Wget through 1.25.0, fixed in commit c2640fe, contains a heap buffer overflow vulnerability...
Moderate
Unreviewed
CVE-2026-58471
was published
Jul 7, 2026
A heap-buffer-overflow flaw was found in 389 Directory Server (389-ds-base). When
normalizing a...
Moderate
Unreviewed
CVE-2026-14940
was published
Jul 7, 2026
A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server
(389-ds-base)...
High
Unreviewed
CVE-2026-11610
was published
Jul 7, 2026
Heap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthorized attacker to...
High
Unreviewed
CVE-2026-56645
was published
Jul 3, 2026
A flaw was found in GIMP's Paint Shop Pro (PSP) file format parser. This heap buffer overflow...
High
Unreviewed
CVE-2026-58379
was published
Jul 3, 2026
jxl-grid on 32-bit platforms has an out-of-bounds writes due to integer overflow
High
CVE-2026-52834
was published
for
jxl-grid
(Rust)
Jul 2, 2026
Heap buffer overflow in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker...
High
Unreviewed
CVE-2026-14427
was published
Jul 2, 2026
Inappropriate implementation in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote...
High
Unreviewed
CVE-2026-14415
was published
Jul 2, 2026
Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 150.0.7871.46 allowed a remote...
High
Unreviewed
CVE-2026-14385
was published
Jul 2, 2026
Open Babel has out-of-bounds write in ORCA nAtoms parser (second variant)
High
CVE-2022-46290
was published
for
openbabel
(pip)
Jul 1, 2026
Open Babel has out-of-bounds write in ORCA nAtoms parser
High
CVE-2022-46289
was published
for
openbabel
(pip)
Jul 1, 2026
ProTip!
Advisories are also available from the
GraphQL API