Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,409
Erlang
33
GitHub Actions
22
Go
2,144
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

6,163 advisories

Loading
A heap buffer overflow read was discovered in upx 4.0.0, because the check in p_lx_elf.cpp is not... High Unreviewed
CVE-2020-24119 was published May 24, 2022
A memory corruption issue was addressed with improved validation. This issue is fixed in Security... High Unreviewed
CVE-2021-1808 was published May 24, 2022
A vulnerability in the email parsing module in Clam AntiVirus (ClamAV) Software version 0.103.0... High Unreviewed
CVE-2021-1404 was published May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function... Critical Unreviewed
CVE-2018-25013 was published May 24, 2022
An issue was discovered in gpac 0.8.0. The strdup function in box_code_base.c has a heap-based... High Unreviewed
CVE-2020-19750 was published May 24, 2022
An issue was discovered in gpac 0.8.0. The gf_odf_del_ipmp_tool function in odf_code.c has a heap... Critical Unreviewed
CVE-2020-19751 was published May 24, 2022
fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c. Moderate Unreviewed
CVE-2020-21535 was published May 24, 2022
An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in... High Unreviewed
CVE-2022-26698 was published May 27, 2022
In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This... Moderate Unreviewed
CVE-2022-21756 was published Jun 7, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-28854 was published Sep 17, 2022
A denial of service vulnerability exists in some Xiaomi models of phones. The vulnerability is... High Unreviewed
CVE-2020-14125 was published Jun 9, 2022
libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in... Moderate Unreviewed
CVE-2022-31796 was published Jun 3, 2022
libdwarf 0.4.0 has a heap-based buffer over-read in _dwarf_check_string_valid in dwarf_util.c. High Unreviewed
CVE-2022-32200 was published Jun 3, 2022
Apache HTTP Server 2.4.53 and earlier on Windows may read beyond bounds when configured to... Moderate Unreviewed
CVE-2022-28330 was published Jun 10, 2022
Ill-formed headers may lead to unexpected behavior in Istio Moderate
CVE-2022-31045 was published for istio.io/istio (Go) Jun 10, 2022
oschaaf
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function... Critical Unreviewed
CVE-2018-25012 was published May 24, 2022
In f2fs_xattr_generic_list of xattr.c, there is a possible out of bounds read due to a missing... Low Unreviewed
CVE-2020-0067 was published May 24, 2022
A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can... High Unreviewed
CVE-2021-20277 was published May 24, 2022
An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the... High Unreviewed
CVE-2020-13987 was published May 24, 2022
GNOME project libxml2 v2.9.10 and earlier have a global Buffer Overflow vulnerability in... High Unreviewed
CVE-2020-24977 was published May 24, 2022
A memory corruption issue was addressed with improved validation. This issue is fixed in Security... High Unreviewed
CVE-2021-1809 was published May 24, 2022
In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This... Moderate Unreviewed
CVE-2022-21755 was published Jun 7, 2022
In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2022-21746 was published Jun 7, 2022
An out-of-bounds read flaw related to the assess_packet function in eapmd5pass.c:211 was found in... High Unreviewed
CVE-2017-11669 was published May 17, 2022
A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function... Critical Unreviewed
CVE-2018-25010 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database