Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

6,734 advisories

Loading
The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app... Moderate Unreviewed
CVE-2016-8875 was published May 17, 2022
The chartorune function in Artifex Software MuJS allows attackers to cause a denial of service ... High Unreviewed
CVE-2016-7563 was published May 17, 2022
Artifex Software MuJS allows attackers to cause a denial of service (crash) via vectors related... High Unreviewed
CVE-2016-9109 was published May 17, 2022
A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An... Critical Unreviewed
CVE-2021-20093 was published May 24, 2022
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. An out-of-bounds read... Moderate Unreviewed
CVE-2020-16211 was published May 24, 2022
An out-of-bounds read vulnerability exists when parsing a specially crafted file in Esri... Moderate Unreviewed
CVE-2021-29118 was published Aug 13, 2022
Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated... High Unreviewed
CVE-2022-33881 was published Jul 30, 2022
GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client High Unreviewed
CVE-2022-2469 was published Jul 20, 2022
The avcodec_decode_audio4 function in libavcodec in libavformat 57.34.103, as used in MPlayer,... Moderate Unreviewed
CVE-2016-5115 was published May 17, 2022
Integer overflow in the writeBufferToSeparateStrips function in tiffcrop.c in LibTIFF before 4.0... Moderate Unreviewed
CVE-2016-9532 was published May 17, 2022
There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0. If an attacker is... Moderate Unreviewed
CVE-2020-27845 was published May 24, 2022
The ip_cmsg_recv_checksum function in net/ipv4/ip_sockglue.c in the Linux kernel before 4.10.1... High Unreviewed
CVE-2017-6347 was published May 17, 2022
The setByteArray function in tif_dir.c in libtiff 4.0.6 and earlier allows remote attackers to... Moderate Unreviewed
CVE-2016-5315 was published May 17, 2022
KVM in the Linux kernel before 4.8.12, when I/O APIC is enabled, does not properly restrict the... High Unreviewed
CVE-2016-9777 was published May 17, 2022
Adobe Illustrator versions 26.3.1 (and earlier) and 25.4.6 (and earlier) are affected by an out... Moderate Unreviewed
CVE-2022-34262 was published Aug 12, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2022-34889 was published Jul 19, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... Low Unreviewed
CVE-2022-34875 was published Jul 19, 2022
Nginx NJS v0.7.4 was discovered to contain an out-of-bounds read via njs_scope_value at njs_scope.h. Critical Unreviewed
CVE-2022-34029 was published Jul 19, 2022
Out-of-bounds Read vulnerability in ICONICS GENESIS64 versions 10.97.1 and prior and Mitsubishi... Critical Unreviewed
CVE-2022-33319 was published Jul 21, 2022
The rsvg_pattern_fix_fallback function in rsvg-paint_server.c in librsvg2 2.40.2 allows remote... Moderate Unreviewed
CVE-2016-6163 was published May 17, 2022
Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0104. High Unreviewed
CVE-2022-2581 was published Aug 2, 2022
In emi mpu, there is a possible out of bounds read due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2022-26436 was published Aug 2, 2022
The base64encode function in base64.c in libimobiledevice libplist 1.12 allows local users to... Moderate Unreviewed
CVE-2017-6437 was published May 17, 2022
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has... High Unreviewed
CVE-2017-7300 was published May 17, 2022
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is... High Unreviewed
CVE-2017-7303 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database