Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,323 advisories

Loading
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump... Moderate Unreviewed
CVE-2022-35040 was published Oct 14, 2022
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump... Moderate Unreviewed
CVE-2022-35042 was published Oct 14, 2022
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump... Moderate Unreviewed
CVE-2022-35044 was published Oct 14, 2022
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump... Moderate Unreviewed
CVE-2022-35041 was published Oct 14, 2022
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump... Moderate Unreviewed
CVE-2022-35046 was published Oct 14, 2022
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump... Moderate Unreviewed
CVE-2022-35051 was published Oct 14, 2022
OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have an Out-of-bound memory read... Moderate Unreviewed
CVE-2022-41686 was published Oct 14, 2022
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via png_read_header at ... Moderate Unreviewed
CVE-2022-35081 was published Oct 13, 2022
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via png_load at /lib... Moderate Unreviewed
CVE-2022-35080 was published Oct 13, 2022
In cpu dvfs, there is a possible out of bounds write due to a missing bounds check. This could... Moderate Unreviewed
CVE-2022-32592 was published Oct 8, 2022
In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2022-26475 was published Oct 8, 2022
JXPath Out-of-bounds Write vulnerability Moderate
CVE-2022-40160 was published for commons-jxpath:commons-jxpath (Maven) Oct 6, 2022 withdrawn
JXPath Out-of-bounds Write vulnerability Moderate
CVE-2022-40158 was published for commons-jxpath:commons-jxpath (Maven) Oct 6, 2022 withdrawn
JXPath Out-of-bounds Write vulnerability Moderate
CVE-2022-40157 was published for commons-jxpath:commons-jxpath (Maven) Oct 6, 2022 withdrawn
JXPath Out-of-bounds Write vulnerability Moderate
CVE-2022-40161 was published for commons-jxpath:commons-jxpath (Maven) Oct 6, 2022 withdrawn
JXPath Out-of-bounds Write vulnerability Moderate
CVE-2022-40159 was published for commons-jxpath:commons-jxpath (Maven) Oct 6, 2022 withdrawn
nasm v2.16 was discovered to contain a stack overflow in the Ndisasm component Moderate Unreviewed
CVE-2022-41420 was published Oct 4, 2022
An issue was discovered in Xpdf 4.04. There is a crash in gfseek(_IO_FILE*, long, int) in goo... Moderate Unreviewed
CVE-2022-41842 was published Oct 1, 2022
An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetch(int, int, Object*, int) in... Moderate Unreviewed
CVE-2022-41844 was published Oct 1, 2022
A vulnerability in the authentication functionality of Cisco Wireless LAN Controller (WLC) AireOS... Moderate Unreviewed
CVE-2022-20769 was published Oct 1, 2022
A buffer overflow in the component nfc_device_load_mifare_ul_data of Flipper Devices Inc.,... Moderate Unreviewed
CVE-2022-40363 was published Sep 30, 2022
A vulnerability was found in Sony PS4 and PS5. It has been classified as critical. This affects... Moderate Unreviewed
CVE-2022-3349 was published Sep 29, 2022
A stack-based buffer overflow vulnerability was found on Western Digital My Cloud Home, My Cloud... Moderate Unreviewed
CVE-2022-23006 was published Sep 28, 2022
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via... Moderate Unreviewed
CVE-2022-35098 was published Sep 25, 2022
SWFTools commit 772e55a2 was discovered to contain a stack overflow via ImageStream::getPixel... Moderate Unreviewed
CVE-2022-35099 was published Sep 25, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database