Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,342
Erlang
31
GitHub Actions
22
Go
2,106
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

439 advisories

Loading
Missing rate limit on rdiffweb Moderate
CVE-2022-3456 was published for rdiffweb (pip) Oct 14, 2022
XAPI open file limit DoS It is possible for an unauthenticated client on the network to cause... Moderate Unreviewed
CVE-2022-33749 was published Oct 11, 2022
In ISC DHCP 1.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1 a system with access to a DHCP... Moderate Unreviewed
CVE-2022-2929 was published Oct 7, 2022
NocoDB vulnerable to Denial of Service Moderate
CVE-2022-3423 was published for nocodb (npm) Oct 7, 2022
IBM CICS TX 11.1 could allow a local user to cause a denial of service due to improper load... Moderate Unreviewed
CVE-2022-34308 was published Oct 7, 2022
An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the... Moderate Unreviewed
CVE-2022-41846 was published Oct 1, 2022
An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the... Moderate Unreviewed
CVE-2022-41845 was published Oct 1, 2022
rdiffweb's unlimited length Fullname field can lead to DoS Moderate
CVE-2022-3364 was published for rdiffweb (pip) Sep 30, 2022
SWFTools commit 772e55a2 was discovered to contain a heap-buffer-overflow via getTransparentColor... Moderate Unreviewed
CVE-2022-35089 was published Sep 22, 2022
TYPO3 CMS vulnerable to Denial of Service in Page Error Handling Moderate
CVE-2022-36104 was published for typo3/cms (Composer) Sep 16, 2022
rikwillems
Mattermost version 7.0.x and earlier fails to sufficiently limit the in-memory sizes of... Moderate Unreviewed
CVE-2022-3147 was published Sep 10, 2022
In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function ... Moderate Unreviewed
CVE-2020-35534 was published Sep 2, 2022
A flaw was found in Clmg, where with the help of a maliciously crafted pandore or bmp file with... Moderate Unreviewed
CVE-2022-1325 was published Sep 1, 2022
An issue was discovered in wolfSSL before 5.5.0 (when --enable-session-ticket is used); however,... Moderate Unreviewed
CVE-2022-38153 was published Sep 1, 2022
Helm Vulnerable to denial of service through string value parsing Moderate
CVE-2022-36055 was published for helm.sh/helm/v3 (Go) Aug 30, 2022
DavidKorczynski AdamKorcz
A flaw was found in the filelock_init in fs/locks.c function in the Linux kernel. This issue can... Moderate Unreviewed
CVE-2022-0480 was published Aug 29, 2022
A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with... Moderate Unreviewed
CVE-2021-3669 was published Aug 27, 2022
A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg... Moderate Unreviewed
CVE-2021-3759 was published Aug 24, 2022
tifig v0.2.2 was discovered to contain a resource allocation issue via operator new(unsigned long... Moderate Unreviewed
CVE-2022-36155 was published Aug 17, 2022
SWFMill commit 53d7690 was discovered to contain a memory allocation issue via operator new[]... Moderate Unreviewed
CVE-2022-36146 was published Aug 17, 2022
tifig v0.2.2 was discovered to contain a heap-buffer overflow via __asan_memmove at /asan... Moderate Unreviewed
CVE-2022-36150 was published Aug 17, 2022
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via DCTStream::reset()... Moderate Unreviewed
CVE-2022-35104 was published Aug 17, 2022
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via /bin/png2swf+0x552cea. Moderate Unreviewed
CVE-2022-35105 was published Aug 17, 2022
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via draw_stroke at ... Moderate Unreviewed
CVE-2022-35109 was published Aug 17, 2022
SWFTools commit 772e55a2 was discovered to contain a stack overflow via vfprintf at /stdio-common... Moderate Unreviewed
CVE-2022-35107 was published Aug 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database