Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
50
Go
3,615
Maven
5,000+
npm
5,000+
NuGet
925
pip
4,835
Pub
13
RubyGems
1,045
Rust
1,256
Swift
53
Unreviewed advisories
All unreviewed
5,000+

2,654 advisories

Loading
Integer Overflow or Wraparound vulnerability in Apache Thrift. This issue affects Apache Thrift:... High Unreviewed
CVE-2026-41605 was published Apr 28, 2026
Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language... High Unreviewed
CVE-2026-41602 was published Apr 28, 2026
Grid: Integer Overflow in Grid::expand_rows Leads to Safe-API Undefined Behavior Moderate
GHSA-38c5-483c-4qqp was published for grid (Rust) Apr 24, 2026
ksj1230 Credited to ksj1230
In the Linux kernel, the following vulnerability has been resolved: mm: filemap: fix nr_pages... High Unreviewed
CVE-2026-31648 was published Apr 24, 2026
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix integer overflow... Critical Unreviewed
CVE-2026-31633 was published Apr 24, 2026
In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix integer... Critical Unreviewed
CVE-2026-31649 was published Apr 24, 2026
go-ntlmssp NTLM challenges can panic on malformed payloads Moderate
CVE-2026-32952 was published for github.com/Azure/go-ntlmssp (Go) Apr 23, 2026
nimiq-block has skip block quorum bypass via out-of-range BitSet indices & u16 truncation Critical
CVE-2026-33471 was published for nimiq-block (Rust) Apr 22, 2026
1seal Credited to 1seal
A client might theoretically be able to cause a mismatch between queries sent to a backend and... Low Unreviewed
CVE-2026-33596 was published Apr 22, 2026
An operator allowed to use the REST API can cause the Authoritative server to produce invalid... Moderate Unreviewed
CVE-2026-33611 was published Apr 22, 2026
In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Harden depth... Moderate Unreviewed
CVE-2026-31491 was published Apr 22, 2026
Integer overflow in scratch buffer initialization size calculation in Samsung Open Source ONE... Moderate Unreviewed
CVE-2026-41665 was published Apr 22, 2026
Integer overflow in output tensor copy size calculation in Samsung Open Source ONE could cause... Moderate Unreviewed
CVE-2026-40450 was published Apr 22, 2026
Integer overflow in buffer size calculation could result in out of bounds memory access when... Moderate Unreviewed
CVE-2026-40449 was published Apr 22, 2026
Integer overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid... Moderate Unreviewed
CVE-2026-41664 was published Apr 22, 2026
Integer overflow in tensor copy size calculation in Samsung Open Source ONE could lead to out of... Moderate Unreviewed
CVE-2026-41666 was published Apr 22, 2026
Integer overflow in constant tensor data size calculation in Samsung Open Source ONE could cause... Moderate Unreviewed
CVE-2026-41667 was published Apr 22, 2026
Potential Integer overflow in tensor allocation size calculation could lead to insufficient... Moderate Unreviewed
CVE-2026-40448 was published Apr 22, 2026
Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component. This... Moderate Unreviewed
CVE-2026-6783 was published Apr 21, 2026
Denial-of-service due to integer overflow in the Graphics: WebGPU component. This vulnerability... High Unreviewed
CVE-2026-6773 was published Apr 21, 2026
Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the... Moderate Unreviewed
CVE-2026-41254 was published Apr 18, 2026
FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds write via CENC (Common... Moderate Unreviewed
CVE-2026-40962 was published Apr 16, 2026
A flaw was found in FFmpeg. A remote attacker could exploit this vulnerability by providing a... Moderate Unreviewed
CVE-2026-6385 was published Apr 15, 2026
A flaw was found in GIMP. A remote attacker could exploit an integer overflow vulnerability in... Moderate Unreviewed
CVE-2026-40915 was published Apr 15, 2026
Integer size truncation in Windows Advanced Rasterization Platform (WARP) allows an unauthorized... High Unreviewed
CVE-2026-26178 was published Apr 14, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database