GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
69 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
vt: prevent kernel-infoleak...
Moderate
Unreviewed
CVE-2024-50076
was published
Oct 29, 2024
Missing Initialization of Resource in Apache Arrow
High
CVE-2019-12408
was published
for
pyarrow
(RubyGems)
May 24, 2022
Missing Initialization of Resource in Apache Arrow
High
CVE-2019-12410
was published
for
pyarrow
(RubyGems)
May 24, 2022
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted...
High
Unreviewed
CVE-2024-9780
was published
Oct 10, 2024
Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault...
Moderate
Unreviewed
CVE-2023-5138
was published
Jan 4, 2024
The ctl_write_buffer and ctl_read_buffer functions allocated memory to be returned to userspace,...
High
Unreviewed
CVE-2024-8178
was published
Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
vhost/vsock: always...
High
Unreviewed
CVE-2024-43873
was published
Aug 21, 2024
Mattermost Mobile Apps versions <=2.16.0 fail to protect against abuse of a globally shared...
Low
Unreviewed
CVE-2024-32945
was published
Jul 15, 2024
In Eclipse Openj9 to version 0.25.0, usage of the jdk.internal.reflect.ConstantPool API causes...
Moderate
Unreviewed
CVE-2021-28167
was published
May 24, 2022
curl 7.7 through 7.76.1 suffers from an information disclosure when the `-t` command line option,...
High
Unreviewed
CVE-2021-22898
was published
May 24, 2022
In libavc, there is a missing variable initialization. This could lead to remote information...
Moderate
Unreviewed
CVE-2019-9321
was published
May 24, 2022
In libhevc, there is a missing variable initialization. This could lead to remote information...
Moderate
Unreviewed
CVE-2019-9318
was published
May 24, 2022
In libavc, there is a missing variable initialization. This could lead to remote information...
Moderate
Unreviewed
CVE-2019-9320
was published
May 24, 2022
In libhevc, there is a missing variable initialization. This could lead to remote information...
Moderate
Unreviewed
CVE-2019-9315
was published
May 24, 2022
In libstagefright, there is a missing variable initialization. This could lead to remote...
Moderate
Unreviewed
CVE-2019-9316
was published
May 24, 2022
In libavc, there is a missing variable initialization. This could lead to remote information...
Moderate
Unreviewed
CVE-2019-9314
was published
May 24, 2022
In libstagefright, there is a missing variable initialization. This could lead to remote...
Moderate
Unreviewed
CVE-2019-9313
was published
May 24, 2022
In AAC Codec, there is a missing variable initialization. This could lead to remote information...
Moderate
Unreviewed
CVE-2019-9247
was published
May 24, 2022
net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive...
Moderate
Unreviewed
CVE-2021-34693
was published
May 24, 2022
im_vips2dz in /libvips/libvips/deprecated/im_vips2dz.c in libvips before 8.8.2 has an...
Moderate
Unreviewed
CVE-2020-20739
was published
May 24, 2022
Missing Initialization of Resource in pnet
High
CVE-2019-25054
was published
for
pnet
(Rust)
Jan 6, 2022
The eql_g_master_cfg function in drivers/net/eql.c in the Linux kernel before 2.6.36-rc5 does not...
Low
Unreviewed
CVE-2010-3297
was published
May 13, 2022
The get_name function in net/tipc/socket.c in the Linux kernel before 2.6.37-rc2 does not...
Low
Unreviewed
CVE-2010-3877
was published
May 13, 2022
net/packet/af_packet.c in the Linux kernel before 2.6.37-rc2 does not properly initialize certain...
Low
Unreviewed
CVE-2010-3876
was published
May 13, 2022
An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. If an application sets...
Low
Unreviewed
CVE-2022-24448
was published
Feb 10, 2022
ProTip!
Advisories are also available from the
GraphQL API