GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,985
Erlang
29
GitHub Actions
16
Go
1,774
Maven
5,000
npm
3,541
NuGet
617
pip
3,123
Pub
10
RubyGems
838
Rust
790
Swift
34
Unreviewed advisories
All unreviewed
5,000+
790 advisories
Filter by severity
Off-by-one error in simple-slab
High
CVE-2020-35893
was published
for
simple-slab
(Rust)
Aug 25, 2021
Out of bounds write in traitobject
Critical
CVE-2020-35881
was published
for
traitobject
(Rust)
Aug 25, 2021
os_str_bytes relies on undefined behavior of `char::from_u32_unchecked`
High
CVE-2020-35865
was published
for
os_str_bytes
(Rust)
Aug 25, 2021
Drop of uninitialized memory in Ozone
Critical
CVE-2020-35878
was published
for
ozone
(Rust)
Aug 25, 2021
Use after free and double free in bitvec
Critical
CVE-2020-35862
was published
for
bitvec
(Rust)
Aug 25, 2021
Dangling reference in flatbuffers
High
CVE-2020-35864
was published
for
flatbuffers
(Rust)
Aug 25, 2021
Mishandling of format strings in rusqlite
Critical
CVE-2020-35869
was published
for
rusqlite
(Rust)
Aug 25, 2021
Improper type usage in rusqlite
Critical
CVE-2020-35872
was published
for
rusqlite
(Rust)
Aug 25, 2021
Excessive memory usage in tokio-rustls
High
CVE-2020-35875
was published
for
tokio-rustls
(Rust)
Aug 25, 2021
Unsound casting in flatbuffers
Critical
CVE-2019-25004
was published
for
flatbuffers
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API