Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,521
Maven
5,000+
npm
5,000+
NuGet
911
pip
4,760
Pub
13
RubyGems
1,036
Rust
1,229
Swift
53
Unreviewed advisories
All unreviewed
5,000+

1,539 advisories

Loading
Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker... Unknown Unreviewed
CVE-2026-6306 was published Apr 15, 2026
Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker... High Unreviewed
CVE-2026-6305 was published Apr 15, 2026
Heap buffer overflow in PDFium in Google Chrome on Windows prior to 147.0.7727.101 allowed a... High Unreviewed
CVE-2026-6361 was published Apr 15, 2026
Heap buffer overflow in ANGLE in Google Chrome prior to 147.0.7727.101 allowed a remote attacker... Critical Unreviewed
CVE-2026-6296 was published Apr 15, 2026
Heap buffer overflow in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker... Moderate Unreviewed
CVE-2026-6298 was published Apr 15, 2026
Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow... Moderate Unreviewed
CVE-2026-27301 was published Apr 15, 2026
Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-27293 was published Apr 15, 2026
ImageMagick has a heap buffer overflow read in magnify operation via unrecognized magnify:method value Low
GHSA-8vfj-q2cp-5m5j was published for Magick.NET-Q16-AnyCPU (NuGet) Apr 14, 2026
e1abrador Credited to e1abrador
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-27311 was published Apr 14, 2026
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-27310 was published Apr 14, 2026
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-27313 was published Apr 14, 2026
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-27312 was published Apr 14, 2026
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-34630 was published Apr 14, 2026
ImageMagick has a heap out-of-bounds write in JP2 encoder Moderate
CVE-2026-40310 was published for Magick.NET-Q16-AnyCPU (NuGet) Apr 14, 2026
jakelamberson Credited to jakelamberson
ImageMagick has a heap buffer overflow when encoding JXL image with a 16-bit float Moderate
CVE-2026-40183 was published for Magick.NET-Q16-AnyCPU (NuGet) Apr 14, 2026
jakelamberson Credited to jakelamberson
ImageMagick has a heap buffer overflow (WRITE) in the YAML and JSON encoders. Moderate
CVE-2026-40169 was published for Magick.NET-Q16-AnyCPU (NuGet) Apr 14, 2026
zer0matt Credited to zer0matt
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-34629 was published Apr 14, 2026
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-34627 was published Apr 14, 2026
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2026-34628 was published Apr 14, 2026
Heap-based buffer overflow in Windows USB Print Driver allows an unauthorized attacker to elevate... Moderate Unreviewed
CVE-2026-32223 was published Apr 14, 2026
Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to... High Unreviewed
CVE-2026-32221 was published Apr 14, 2026
Heap-based buffer overflow in Function Discovery Service (fdwsd.dll) allows an authorized... High Unreviewed
CVE-2026-32087 was published Apr 14, 2026
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2026-32093 was published Apr 14, 2026
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2026-26180 was published Apr 14, 2026
Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized... High Unreviewed
CVE-2026-26176 was published Apr 14, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database