GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
33 advisories
Filter by severity
pymonocypher: Potential heap buffer overflow on nb_blocks in argon2i_32 when provided buffer is too small
Moderate
CVE-2026-53720
was published
for
pymonocypher
(pip)
Jul 9, 2026
ImageMagick has a Heap Buffer Over-Write in SF3 encoder when writing multi-frame image
Moderate
CVE-2026-53465
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Jun 26, 2026
ImageMagick has a Heap Buffer Over-Write in MAT decoder on 32-bit systems
Moderate
CVE-2026-48994
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Jun 25, 2026
ImageMagick: Heap Buffer Over-Write in distributed pixel cache server
Moderate
CVE-2026-46692
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
May 22, 2026
rust-openssl vulnerable to heap buffer overflow when encrypting with AES key-wrap-with-padding
Moderate
CVE-2026-44662
was published
for
openssl
(Rust)
May 7, 2026
Pillow has a heap buffer overflow with nested list coordinates
Moderate
CVE-2026-42309
was published
for
pillow
(pip)
May 4, 2026
ImageMagick has a heap out-of-bounds write in JP2 encoder
Moderate
CVE-2026-40310
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Apr 14, 2026
ImageMagick has a heap buffer overflow when encoding JXL image with a 16-bit float
Moderate
CVE-2026-40183
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Apr 14, 2026
ImageMagick has a heap buffer overflow (WRITE) in the YAML and JSON encoders.
Moderate
CVE-2026-40169
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Apr 14, 2026
ImageMagick has a heap-Buffer-Overflow write of a single zero byte when parsing xml.
Moderate
CVE-2026-33899
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Apr 13, 2026
ImageMagick has heap buffer overflow in WriteXWDImage due to CARD32 arithmetic overflow in bytes_per_line calculation
Moderate
CVE-2026-30937
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 12, 2026
ImageMagick has Heap Buffer Overflow in WaveletDenoiseImage
Moderate
CVE-2026-30936
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 12, 2026
ImageMagick has heap-based buffer overflow in UHDR encoder
Moderate
CVE-2026-30931
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 12, 2026
ImageMagick: Write heap-buffer-overflow in PCL encoder via undersized output buffer
Moderate
CVE-2026-28686
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 12, 2026
ImageMagick: Heap overflow in pcd decoder leads to out of bounds read.
Moderate
CVE-2026-26284
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 12, 2026
ImageMagick is vulnerable to heap buffer over-write on 32-bit systems in SFW decoder
Moderate
CVE-2026-31853
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 10, 2026
ImageMagick has a heap Buffer Over-read in its DJVU image format handler
Moderate
CVE-2026-27799
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick: Heap overflow in sun decoder on 32-bit systems may result in out of bounds write
Moderate
CVE-2026-25897
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 24, 2026
ImageMagick: Out of bounds read in multiple coders read raw pixel data
Moderate
CVE-2026-25576
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 24, 2026
MLX has heap-buffer-overflow in load()
Moderate
CVE-2025-62608
was published
for
mlx
(pip)
Nov 21, 2025
User-defined implementations of the safe trait scratchpad::Tracking can cause heap buffer overflows
Moderate
GHSA-77h3-w9rx-hj3q
was published
for
scratchpad
(Rust)
Aug 14, 2025
Electron vulnerable to Heap Buffer Overflow in NativeImage
Moderate
CVE-2024-46993
was published
for
electron
(npm)
Jun 30, 2025
Heap-based Buffer Overflow in MicroPython
Moderate
CVE-2024-8946
was published
for
micropython-copy
(pip)
Sep 17, 2024
heap-buffer-overflow in MicroPython
Moderate
CVE-2024-8948
was published
for
micropython-copy
(pip)
Sep 17, 2024
Elasticsearch StackOverflow vulnerability
Moderate
CVE-2024-37280
was published
for
org.elasticsearch:elasticsearch
(Maven)
Jun 13, 2024
ProTip!
Advisories are also available from the
GraphQL API