Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,323 advisories

Loading
An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu... Moderate Unreviewed
CVE-2022-36280 was published Sep 10, 2022
A heap-based buffer overflow flaw was found in the Fribidi package and affects the... Moderate Unreviewed
CVE-2022-25309 was published Sep 7, 2022
In vow, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2022-26457 was published Sep 7, 2022
In vow, there is a possible out of bounds write due to an incorrect bounds check. This could lead... Moderate Unreviewed
CVE-2022-26460 was published Sep 7, 2022
The vulnerability in the driver dlpfde.sys enables a user logged into the system to perform... Moderate Unreviewed
CVE-2022-2402 was published Sep 7, 2022
In vow, there is a possible out of bounds write due to an incorrect bounds check. This could lead... Moderate Unreviewed
CVE-2022-26464 was published Sep 7, 2022
In vow, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2022-26458 was published Sep 7, 2022
In rpmb, there is a possible out of bounds write due to an incorrect bounds check. This could... Moderate Unreviewed
CVE-2022-26467 was published Sep 7, 2022
In preloader (usb), there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2022-26468 was published Sep 7, 2022
In apusys, there is a possible out of bounds write due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2022-26449 was published Sep 7, 2022
In apusys, there is a possible out of bounds write due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2022-26448 was published Sep 7, 2022
In aie, there is a possible out of bounds write due to an incorrect bounds check. This could lead... Moderate Unreviewed
CVE-2022-26470 was published Sep 7, 2022
In gz, there is a possible memory corruption due to incorrect error handling. This could lead to... Moderate Unreviewed
CVE-2022-26455 was published Sep 7, 2022
In audio ipi, there is a possible out of bounds write due to an incorrect bounds check. This... Moderate Unreviewed
CVE-2022-26465 was published Sep 7, 2022
snakeYAML before 1.32 vulnerable to Denial of Service due to Out-of-bounds Write Moderate
CVE-2022-38752 was published for org.yaml:snakeyaml (Maven) Sep 6, 2022
mprins
Credited to mprins
snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write Moderate
CVE-2022-38749 was published for be.cylab:snakeyaml (Maven) Sep 6, 2022
snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write Moderate
CVE-2022-38751 was published for org.yaml:snakeyaml (Maven) Sep 6, 2022
snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write Moderate
CVE-2022-38750 was published for org.yaml:snakeyaml (Maven) Sep 6, 2022
In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (libraw... Moderate Unreviewed
CVE-2020-35530 was published Sep 2, 2022
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped()... Moderate Unreviewed
CVE-2022-1354 was published Sep 1, 2022
Advancecomp v2.3 was discovered to contain a heap buffer overflow. Moderate Unreviewed
CVE-2022-35016 was published Aug 29, 2022
Advancecomp v2.3 was discovered to contain a heap buffer overflow via the component... Moderate Unreviewed
CVE-2022-35020 was published Aug 29, 2022
Advancecomp v2.3 was discovered to contain a heap buffer overflow via le_uint32_read at /lib... Moderate Unreviewed
CVE-2022-35015 was published Aug 29, 2022
Advancecomp v2.3 was discovered to contain a heap buffer overflow. Moderate Unreviewed
CVE-2022-35017 was published Aug 29, 2022
A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum... Moderate Unreviewed
CVE-2022-1115 was published Aug 29, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database