GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 18,811
Composer 3,648
Erlang 29
GitHub Actions 16
Go 1,705
Maven 4,937
npm 3,470
NuGet 603
pip 2,982
Pub 10
RubyGems 826
Rust 770
Swift 34

Unreviewed advisories

All unreviewed 218,160

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4 advisories

Filter by severity

Sort by

Least recently updated

Multiple heap-based buffer overflows in the virtio-blk driver (hw/virtio-blk.c) in qemu-kvm 0.14... High Unreviewed

CVE-2011-1750 was published May 17, 2022

Apache Tomcat does not enforce the maxHttpHeaderSize limit High

CVE-2011-0534 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022

Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote... Moderate Unreviewed

CVE-2010-2249 was published May 13, 2022

The pciej_write function in hw/acpi_piix4.c in the PIIX4 Power Management emulation in qemu-kvm... High Unreviewed

CVE-2011-1751 was published May 13, 2022

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4 advisories