Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
50
Go
3,630
Maven
5,000+
npm
5,000+
NuGet
928
pip
4,850
Pub
13
RubyGems
1,045
Rust
1,301
Swift
53
Unreviewed advisories
All unreviewed
5,000+

12,131 advisories

Loading
Local privilege escalation due to improper input validation. The following products are affected:... High Unreviewed
CVE-2026-41220 was published Apr 29, 2026
The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2... High Unreviewed
CVE-2026-5435 was published Apr 28, 2026
In the Linux kernel, the following vulnerability has been resolved: usbip: validate... Critical Unreviewed
CVE-2026-31607 was published Apr 24, 2026
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix buffer overread... High Unreviewed
CVE-2026-31631 was published Apr 24, 2026
Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via... Moderate Unreviewed
CVE-2026-41989 was published Apr 23, 2026
Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds... Moderate Unreviewed
CVE-2026-41990 was published Apr 23, 2026
Dell PowerProtect Data Domain with Domain Operating System (DD OS) of Feature Release versions 7... High Unreviewed
CVE-2026-26354 was published Apr 22, 2026
rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1 High
CVE-2026-41676 was published for openssl (Rust) Apr 22, 2026
rust-openssl has incorrect bounds assertion in aes key wrap High
CVE-2026-41678 was published for openssl (Rust) Apr 22, 2026
uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided Moderate
GHSA-w5hq-g745-h8pq was published for uuid (npm) Apr 22, 2026
0xStraw-Hat Credited to 0xStraw-Hat
LanSpy 2.0.1.159 contains a local buffer overflow vulnerability in the scan section that allows... High Unreviewed
CVE-2018-25265 was published Apr 22, 2026
Angry IP Scanner for Linux 3.5.3 contains a denial of service vulnerability that allows local... Moderate Unreviewed
CVE-2018-25262 was published Apr 22, 2026
LanSpy 2.0.1.159 contains a local buffer overflow vulnerability that allows attackers to... High Unreviewed
CVE-2018-25268 was published Apr 22, 2026
Angry IP Scanner 3.5.3 contains a buffer overflow vulnerability in the preferences dialog that... Moderate Unreviewed
CVE-2018-25266 was published Apr 22, 2026
Textpad 8.1.2 contains a denial of service vulnerability that allows local attackers to crash the... Moderate Unreviewed
CVE-2018-25271 was published Apr 22, 2026
Iperius Backup 5.8.1 contains a local buffer overflow vulnerability in the structured exception... High Unreviewed
CVE-2018-25261 was published Apr 22, 2026
MAGIX Music Editor 3.1 contains a buffer overflow vulnerability in the FreeDB Proxy Options... High Unreviewed
CVE-2018-25260 was published Apr 22, 2026
UltraISO 9.7.1.3519 contains a local buffer overflow vulnerability in the Output FileName field... Moderate Unreviewed
CVE-2018-25267 was published Apr 22, 2026
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix undefined behavior... High Unreviewed
CVE-2026-31525 was published Apr 22, 2026
In the Linux kernel, the following vulnerability has been resolved: net: macb: use the current... High Unreviewed
CVE-2026-31494 was published Apr 22, 2026
In the Linux kernel, the following vulnerability has been resolved: iavf: fix out-of-bounds... High Unreviewed
CVE-2026-31505 was published Apr 22, 2026
In the Linux kernel, the following vulnerability has been resolved: module: Fix kernel panic... Moderate Unreviewed
CVE-2026-31521 was published Apr 22, 2026
The method "sock_recvfrom_into()" of "asyncio.ProacterEventLoop" (Windows only) was missing a... High Unreviewed
CVE-2026-3298 was published Apr 21, 2026
Calling the scanf family of functions with a %mc (malloc'd character match) in the GNU C Library... Critical Unreviewed
CVE-2026-5450 was published Apr 20, 2026
A flaw was found in dnsmasq. A remote attacker could exploit an out-of-bounds write vulnerability... High Unreviewed
CVE-2026-6507 was published Apr 17, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database