Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,137 advisories

Loading
In GIMP 2.8.22, there is a stack-based buffer over-read in xcf_load_stream in app/xcf/xcf.c when... Moderate Unreviewed
CVE-2017-17788 was published May 13, 2022
The print_exprloc_content function in libdwarf before 20160923 allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-5033 was published May 13, 2022
The _dwarf_read_line_table_header function in dwarf_line_table_reader.c in libdwarf before... Moderate Unreviewed
CVE-2016-5035 was published May 13, 2022
The print_frame_inst_bytes function in libdwarf before 20160923 allows remote attackers to cause... Moderate Unreviewed
CVE-2016-5031 was published May 13, 2022
The dwarf_get_xu_hash_entry function in libdwarf before 20160923 allows remote attackers to cause... Moderate Unreviewed
CVE-2016-5032 was published May 13, 2022
The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows... Moderate Unreviewed
CVE-2016-8680 was published May 13, 2022
The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows... Moderate Unreviewed
CVE-2016-8679 was published May 13, 2022
The read_line_table_program function in dwarf_line_table_reader_common.c in libdwarf before... Moderate Unreviewed
CVE-2016-7510 was published May 13, 2022
A heap-based buffer over-read was discovered in the tcpreplay-edit binary of Tcpreplay 4.3.0... Moderate Unreviewed
CVE-2018-18407 was published May 13, 2022
An issue was discovered in Tcpreplay 4.3.0 beta1. A heap-based buffer over-read was triggered in... Moderate Unreviewed
CVE-2018-17974 was published May 13, 2022
The _dwarf_read_loc_section function in dwarf_loc.c in libdwarf 20160613 allows attackers to... Moderate Unreviewed
CVE-2016-7410 was published May 13, 2022
In libsamplerate before 0.1.9, a buffer over-read occurs in the calc_output_single function in... Moderate Unreviewed
CVE-2017-7697 was published May 13, 2022
A flaw was found in libgit2 before version 0.27.3. A missing check in git_delta_apply function in... Moderate Unreviewed
CVE-2018-10888 was published May 13, 2022
An exploitable information disclosure vulnerability exists in the PCX image rendering... Moderate Unreviewed
CVE-2018-3837 was published May 13, 2022
An exploitable information vulnerability exists in the XCF image rendering functionality of... Moderate Unreviewed
CVE-2018-3838 was published May 13, 2022
An exploitable arbitrary read exists in the XLS parsing of the Lexmark Perspective Document... Moderate Unreviewed
CVE-2017-2806 was published May 13, 2022
A large out-of-bounds read on the heap vulnerability in Foxit PDF Reader can potentially be... Moderate Unreviewed
CVE-2016-8334 was published May 13, 2022
An out of bounds read vulnerability exists in the malware scan functionality of ESTsoft Alyac 2.5... Moderate Unreviewed
CVE-2022-21147 was published May 13, 2022
LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing... Moderate Unreviewed
CVE-2022-1622 was published May 12, 2022
LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:624, allowing... Moderate Unreviewed
CVE-2022-1623 was published May 12, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x... Moderate Unreviewed
CVE-2022-28260 was published May 12, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x... Moderate Unreviewed
CVE-2022-28265 was published May 12, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x... Moderate Unreviewed
CVE-2022-28266 was published May 12, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x... Moderate Unreviewed
CVE-2022-28267 was published May 12, 2022
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x... Moderate Unreviewed
CVE-2022-28262 was published May 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database