Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,563 advisories

Loading
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-28856 was published Sep 17, 2022
Adobe InCopy version 17.3 (and earlier) and 16.4.2 (and earlier) are affected by an out-of-bounds... Moderate Unreviewed
CVE-2022-38407 was published Sep 17, 2022
Adobe Illustrator versions 26.4 (and earlier) and 25.4.7 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-38409 was published Sep 17, 2022
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags. Moderate Unreviewed
CVE-2021-3522 was published May 24, 2022
An issue was discovered in cpp-peglib through v0.1.12. peg::resolve_escape_sequence() in peglib.h... Moderate Unreviewed
CVE-2020-23915 was published May 24, 2022
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was... Moderate Unreviewed
CVE-2022-22674 was published May 27, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-30673 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-28857 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-30672 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-30675 was published Sep 17, 2022
Possible buffer overflow due to lack of buffer length check during management frame Rx handling... Moderate Unreviewed
CVE-2022-25663 was published Oct 19, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-30676 was published Sep 17, 2022
The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile... Moderate Unreviewed
CVE-2015-2326 was published May 24, 2022
fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c. Moderate Unreviewed
CVE-2020-21535 was published May 24, 2022
In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This... Moderate Unreviewed
CVE-2022-21756 was published Jun 7, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-28854 was published Sep 17, 2022
libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in... Moderate Unreviewed
CVE-2022-31796 was published Jun 3, 2022
Apache HTTP Server 2.4.53 and earlier on Windows may read beyond bounds when configured to... Moderate Unreviewed
CVE-2022-28330 was published Jun 10, 2022
Ill-formed headers may lead to unexpected behavior in Istio Moderate
CVE-2022-31045 was published for istio.io/istio (Go) Jun 10, 2022
oschaaf
In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2022-21746 was published Jun 7, 2022
In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This... Moderate Unreviewed
CVE-2022-21755 was published Jun 7, 2022
In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_b_mb_intfi in vc1_block.c... Moderate Unreviewed
CVE-2020-18775 was published May 24, 2022
In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_p_mb_intfi in vc1_block.c... Moderate Unreviewed
CVE-2020-18778 was published May 24, 2022
Trend Micro Security 2022 and 2021 (Consumer) is vulnerable to an Out-Of-Bounds Read Information... Moderate Unreviewed
CVE-2022-30702 was published Jun 10, 2022
An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds... Moderate Unreviewed
CVE-2021-43389 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API