Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,041
Maven
5,000+
npm
3,733
NuGet
662
pip
3,414
Pub
12
RubyGems
891
Rust
866
Swift
36
Unreviewed advisories
All unreviewed
5,000+

243 advisories

Loading
Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which... Moderate Unreviewed
CVE-2000-0338 was published Apr 30, 2022
Apache 1.4.x before 1.3.30, and 2.0.x before 2.0.49, when using multiple listening sockets on... Moderate Unreviewed
CVE-2004-0174 was published Apr 29, 2022
A Denial of Service vulnerability exists in CORTX-S3 Server as of 11/7/2021 via the... High Unreviewed
CVE-2021-43429 was published Apr 8, 2022
Racy interactions between dirty vram tracking and paging log dirty hypercalls Activation of log... Moderate Unreviewed
CVE-2022-26356 was published Apr 6, 2022
A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself... Moderate Unreviewed
CVE-2021-4147 was published Mar 26, 2022
A flaw was found in the libvirt nwfilter driver. The virNWFilterObjListNumOfNWFilters method... Moderate Unreviewed
CVE-2022-0897 was published Mar 26, 2022
A vulnerability was found in btrfs_alloc_tree_b in fs/btrfs/extent-tree.c in the Linux kernel due... Moderate Unreviewed
CVE-2021-4149 was published Mar 24, 2022
An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It... Moderate Unreviewed
CVE-2021-3667 was published Mar 4, 2022
Improper Locking in JetBrains Kotlin Moderate
CVE-2022-24329 was published for org.jetbrains.kotlin:kotlin-stdlib (Maven) Feb 26, 2022
A locking protection bypass flaw was found in some versions of gnome-shell as shipped within... Moderate Unreviewed
CVE-2021-20315 was published Feb 19, 2022
Denial of Service in Gitea High
CVE-2020-13246 was published for github.com/go-gitea/gitea (Go) Feb 15, 2022
An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series and... High Unreviewed
CVE-2022-22175 was published Jan 20, 2022
In vow driver, there is a possible memory corruption due to improper locking. This could lead to... Moderate Unreviewed
CVE-2022-20016 was published Jan 5, 2022
In mon_smc_load_sp of gs101-sc/plat/samsung/exynos/soc/exynos9845/smc_booting.S, there is a... Moderate Unreviewed
CVE-2021-39647 was published Dec 16, 2021
Deadlock in mutually recursive `tf.function` objects Moderate
CVE-2021-41213 was published for tensorflow (pip) Nov 10, 2021
Data race in va-ts Moderate
CVE-2020-36220 was published for va-ts (Rust) Aug 25, 2021
Improper Locking in github.com/containers/storage Moderate
CVE-2021-20291 was published for github.com/containers/storage (Go) May 10, 2021
Improper Locking in Apache Tomcat High
CVE-2019-10072 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jun 26, 2019
sunSUNQ
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database