GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,413
Erlang
28
GitHub Actions
16
Go
1,653
Maven
4,915
npm
3,441
NuGet
594
pip
2,821
Pub
10
RubyGems
823
Rust
762
Swift
34
Unreviewed advisories
All unreviewed
5,000+
16 advisories
Filter by severity
MapKit in Apple iOS before 9.3.2, OS X before 10.11.5, and watchOS before 2.2.1 does not use...
High
Unreviewed
CVE-2016-1842
was published
May 17, 2022
The sg implementation in the Linux kernel through 4.9 does not properly restrict write operations...
High
Unreviewed
CVE-2016-10088
was published
May 14, 2022
crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of...
Moderate
Unreviewed
CVE-2016-10147
was published
May 14, 2022
Race condition in the L2TPv3 IP Encapsulation feature in the Linux kernel before 4.8.14 allows...
High
Unreviewed
CVE-2016-10200
was published
May 14, 2022
fs/namespace.c in the Linux kernel before 4.9 does not restrict how many mounts may exist in a...
Moderate
Unreviewed
CVE-2016-6213
was published
May 14, 2022
The proc_keys_show function in security/keys/proc.c in the Linux kernel through 4.8.2, when the...
Moderate
Unreviewed
CVE-2016-7042
was published
May 14, 2022
The filesystem implementation in the Linux kernel through 4.8.2 preserves the setgid bit during a...
Moderate
Unreviewed
CVE-2016-7097
was published
May 14, 2022
The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local...
Moderate
Unreviewed
CVE-2016-8645
was published
May 14, 2022
Race condition in the netlink_dump function in net/netlink/af_netlink.c in the Linux kernel...
High
Unreviewed
CVE-2016-9806
was published
May 14, 2022
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not...
High
Unreviewed
CVE-2016-9576
was published
May 14, 2022
Multiple memory leaks in error paths in fs/xfs/xfs_attr_list.c in the Linux kernel before 4.5.1...
Moderate
Unreviewed
CVE-2016-9685
was published
May 14, 2022
Race condition in kernel/events/core.c in the Linux kernel before 4.9.7 allows local users to...
High
Unreviewed
CVE-2017-6001
was published
May 14, 2022
crypto/algif_skcipher.c in the Linux kernel before 4.4.2 does not verify that a setkey operation...
Moderate
Unreviewed
CVE-2015-8970
was published
May 14, 2022
arch/x86/kvm/vmx.c in the Linux kernel through 4.9 mismanages the #BP and #OF exceptions, which...
Moderate
Unreviewed
CVE-2016-9588
was published
May 14, 2022
It was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an...
Moderate
Unreviewed
CVE-2016-9604
was published
May 13, 2022
Multiple race conditions in the ext4 filesystem implementation in the Linux kernel before 4.5...
Moderate
Unreviewed
CVE-2015-8839
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API