Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

6,734 advisories

Loading
In FFmpeg 3.2 and 4.1, a denial of service in the subtitle decoder allows attackers to hog the... Moderate Unreviewed
CVE-2019-9718 was published May 13, 2022
An issue was discovered in fs/f2fs/inline.c in the Linux kernel through 4.4. A denial of service ... Moderate Unreviewed
CVE-2018-13099 was published May 13, 2022
An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_decode() performs... Moderate Unreviewed
CVE-2022-30045 was published May 18, 2022
An out-of-bounds read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10... High Unreviewed
CVE-2022-25942 was published Aug 23, 2022
Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames. Moderate Unreviewed
CVE-2022-33253 was published Jan 9, 2023
Information disclosure due to buffer overread in Core Moderate Unreviewed
CVE-2022-40519 was published Jan 9, 2023
Denial of service while processing fastboot flash command on mmc due to buffer over read Moderate Unreviewed
CVE-2022-22079 was published Jan 9, 2023
Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame. Moderate Unreviewed
CVE-2022-33252 was published Jan 9, 2023
Information disclosure due to buffer overread in Core Moderate Unreviewed
CVE-2022-40518 was published Jan 9, 2023
Out-of-bounds read in some Intel(R) XMM(TM) 7560 Modem software before version M2_7560_R_01.2146... High Unreviewed
CVE-2022-26369 was published Nov 11, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by an out-of... High Unreviewed
CVE-2022-35703 was published Sep 20, 2022
Information disclosure in video due to buffer over-read while processing avi file in Snapdragon... Moderate Unreviewed
CVE-2022-25653 was published Sep 17, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40636 was published Sep 16, 2022
Denial of service in WLAN HOST due to buffer over read while unpacking frames in Snapdragon Auto,... High Unreviewed
CVE-2022-25670 was published Sep 17, 2022
An issue was discovered in Bento4 through 1.6.0-639. A buffer over-read exists in the function... Moderate Unreviewed
CVE-2022-40737 was published Sep 16, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by an out-of... High Unreviewed
CVE-2022-35707 was published Sep 20, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40640 was published Sep 16, 2022
An out-of-bounds read/write access flaw was found in the USB emulator of the QEMU in versions... High Unreviewed
CVE-2020-14364 was published May 24, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by an out-of... High Unreviewed
CVE-2022-35705 was published Sep 20, 2022
Denial of service in video due to buffer over read while parsing MP4 clip in Snapdragon Auto,... High Unreviewed
CVE-2022-25669 was published Sep 17, 2022
TensorFlow vulnerable to OOB read in `Gather_nd` in TF Lite High
CVE-2022-35937 was published for tensorflow (pip) Sep 16, 2022
drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds... Critical Unreviewed
CVE-2019-15505 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40647 was published Sep 16, 2022
In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in... Moderate Unreviewed
CVE-2020-15395 was published May 24, 2022
Exim through 4.93 has an out-of-bounds read in the SPA authenticator that could result in SPA... Moderate Unreviewed
CVE-2020-12783 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database