Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,516 advisories

Loading
The ip_evictor function in ip_fragment.c in libnids before 1.24, as used in dsniff and possibly... Moderate Unreviewed
CVE-2010-0751 was published May 2, 2022
The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.32.4, when... High Unreviewed
CVE-2010-0006 was published May 2, 2022
The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly... Moderate Unreviewed
CVE-2009-3620 was published May 2, 2022
The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the... Low Unreviewed
CVE-2009-3094 was published May 2, 2022
The load_flat_shared_library function in fs/binfmt_flat.c in the flat subsystem in the Linux... High Unreviewed
CVE-2009-2768 was published May 2, 2022
The udp_sendmsg function in the UDP implementation in (1) net/ipv4/udp.c and (2) net/ipv6/udp.c... High Unreviewed
CVE-2009-2698 was published May 2, 2022
The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux kernel 2.6 before 2.6.30, when... Moderate Unreviewed
CVE-2009-2287 was published May 2, 2022
The multipart processor in ModSecurity before 2.5.9 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2009-1902 was published May 2, 2022
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize... Moderate Unreviewed
CVE-2009-0949 was published May 2, 2022
Skulltag before 0.97d2-RC6 allows remote attackers to cause a denial of service (NULL pointer... Moderate Unreviewed
CVE-2008-3597 was published May 2, 2022
The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local... High Unreviewed
CVE-2008-2812 was published May 1, 2022
OpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of service (crash) via a TLS... Moderate Unreviewed
CVE-2008-1672 was published May 1, 2022
The SILC_SERVER_CMD_FUNC function in apps/silcd/command.c in silc-server 1.0.2 allows remote... High Unreviewed
CVE-2007-1327 was published May 1, 2022
axigen 1.2.6 through 2.0.0b1 does not properly parse login credentials, which allows remote... High Unreviewed
CVE-2007-0887 was published May 1, 2022
The Exchange Collaboration Data Objects (EXCDO) functionality in Microsoft Exchange Server 2000... High Unreviewed
CVE-2007-0039 was published May 1, 2022
FileZilla Server before 0.9.22 allows remote attackers to cause a denial of service (crash) via a... Moderate Unreviewed
CVE-2006-6565 was published May 1, 2022
Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when... Low Unreviewed
CVE-2005-3274 was published May 1, 2022
The huft_build function in inflate.c in the zlib routines in the Linux kernel before 2.6.12.5... Moderate Unreviewed
CVE-2005-2459 was published May 1, 2022
VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for... Moderate Unreviewed
CVE-2005-0772 was published May 1, 2022
SkyStream EMR5000 1.16 through 1.18 does not drop packets or disable the Ethernet interface when... Moderate Unreviewed
CVE-2002-1912 was published Apr 30, 2022
The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead... Low Unreviewed
CVE-2001-1559 was published Apr 30, 2022
IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash. Moderate Unreviewed
CVE-1999-0052 was published Apr 30, 2022
It was found that an attacker could issue a xattr request via glusterfs FUSE to cause gluster... Moderate Unreviewed
CVE-2018-10914 was published Apr 30, 2022
A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c in Freeware... Moderate Unreviewed
CVE-2018-20199 was published Apr 30, 2022
A NULL pointer dereference flaw was found in pesign's cms_set_pw_data() function of the... Low Unreviewed
CVE-2022-1249 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API