Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
55
GitHub Actions
50
Go
3,722
Maven
5,000+
npm
5,000+
NuGet
935
pip
4,945
Pub
13
RubyGems
1,055
Rust
1,338
Swift
54
Unreviewed advisories
All unreviewed
5,000+

7,549 advisories

Loading
imageproc: integer overflow in kernel size check leads to out-of-bounds read Moderate
GHSA-w5p8-4jcx-2j6r was published for imageproc (Rust) May 7, 2026
Out of bounds read in AdFilter in Google Chrome prior to 148.0.7778.96 allowed a remote attacker... High Unreviewed
CVE-2026-7995 was published May 6, 2026
Out of bounds read in Codecs in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to... Moderate Unreviewed
CVE-2026-7981 was published May 6, 2026
Out of bounds read in Dawn in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to... Moderate Unreviewed
CVE-2026-7983 was published May 6, 2026
Out of bounds read in WebCodecs in Google Chrome prior to 148.0.7778.96 allowed a remote attacker... Moderate Unreviewed
CVE-2026-7933 was published May 6, 2026
Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who... Low Unreviewed
CVE-2026-7949 was published May 6, 2026
Object lifecycle issue in V8 in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to... Moderate Unreviewed
CVE-2026-7936 was published May 6, 2026
Out of bounds read and write in GFX in Google Chrome prior to 148.0.7778.96 allowed a remote... Moderate Unreviewed
CVE-2026-7950 was published May 6, 2026
Out of bounds read in Fonts in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to... Moderate Unreviewed
CVE-2026-7904 was published May 6, 2026
Out of bounds read and write in V8 in Google Chrome prior to 148.0.7778.96 allowed a remote... High Unreviewed
CVE-2026-7899 was published May 6, 2026
A flaw was found in the X.Org X server. This out-of-bounds read vulnerability in the XKB geometry... Moderate Unreviewed
CVE-2026-34000 was published May 5, 2026
Incus Vulnerable to Panic via Snapshot Bounds Check Moderate
CVE-2026-40251 was published for github.com/lxc/incus/v6/cmd/incusd (Go) May 4, 2026
stamparm Credited to stamparm and stgraber stgraber stgraber
Information Disclosure while processing IOCTL handler callbacks without verifying buffer size. Moderate Unreviewed
CVE-2025-47406 was published May 4, 2026
An out-of-bounds read in the ParseIP6Extended function (/bgp/bgp.go) of gobgp v4.3.0 allows... High Unreviewed
CVE-2026-37461 was published May 4, 2026
Transient DOS when processing a malformed Fast Transition response frame with an invalid header... Moderate Unreviewed
CVE-2025-47403 was published May 4, 2026
Transient DOS when processing target power rate tables during channel configuration. Moderate Unreviewed
CVE-2025-47401 was published May 4, 2026
Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue... Moderate Unreviewed
CVE-2026-34032 was published May 4, 2026
An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the... Moderate Unreviewed
CVE-2025-70072 was published May 4, 2026
Ollama before 0.17.1 contains a heap out-of-bounds read vulnerability in the GGUF model loader.... High Unreviewed
CVE-2026-7482 was published May 4, 2026
Out-of-bounds Read vulnerability in mod_proxy_ajp of Apache HTTP Server. This issue affects... Moderate Unreviewed
CVE-2026-33857 was published May 4, 2026
In geniezone, there is a possible escalation of privilege due to a missing bounds check. This... Moderate Unreviewed
CVE-2026-20447 was published May 4, 2026
An unprivileged attacker can craft a user-space process with a malicious ELF binary containing an... Moderate Unreviewed
CVE-2026-35233 was published May 1, 2026
openxc/isotp-c thru commit 5a5d19245f65189202719321facd49ce6f5d46ac (2021-08-09) contains an out... High Unreviewed
CVE-2026-37535 was published May 1, 2026
Open CASCADE Technology (OCCT) V8_0_0_rc5 contains multiple vulnerabilities in its IGES and STEP... Moderate Unreviewed
CVE-2026-42481 was published May 1, 2026
A stack-based out-of-bounds read vulnerability in VrmlData_Scene::ReadLine in the VRML parser in... Moderate Unreviewed
CVE-2026-42480 was published May 1, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database