Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,427
Erlang
29
GitHub Actions
16
Go
1,660
Maven
4,922
npm
3,450
NuGet
594
pip
2,839
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+

10 advisories

Buffer overflow in the macvtap device driver in the Linux kernel before 3.4.5, when running in... Moderate Unreviewed
CVE-2012-2119 was published May 17, 2022
Integer signedness error in the virtio_net_load function in hw/net/virtio-net.c in QEMU 1.x... High Unreviewed
CVE-2013-4148 was published May 17, 2022
The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to... High Unreviewed
CVE-2013-4151 was published May 17, 2022
Buffer overflow in virt/kvm/irq_comm.c in the KVM subsystem in the Linux kernel before 3.2.24... Moderate Unreviewed
CVE-2012-2137 was published May 17, 2022
Array index error in the virtio_load function in hw/virtio/virtio.c in QEMU before 1.7.2 allows... High Unreviewed
CVE-2013-6399 was published May 13, 2022
The virtio_scsi_load_request function in hw/scsi/scsi-bus.c in QEMU before 1.7.2 might allow... High Unreviewed
CVE-2013-4542 was published May 13, 2022
The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote... High Unreviewed
CVE-2013-4541 was published May 13, 2022
Remote web-service operation execution in Apache CXF High
CVE-2012-3451 was published for org.apache.cxf:cxf (Maven) May 13, 2022
sunSUNQ
Improper Authentication in Apache CXF Moderate
CVE-2012-5633 was published for org.apache.cxf:cxf (Maven) May 13, 2022
sunSUNQ
The virtqueue_map_sg function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers... High Unreviewed
CVE-2013-4535 was published May 5, 2022
ProTip! Advisories are also available from the GraphQL API