GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,440
Erlang
29
GitHub Actions
16
Go
1,665
Maven
4,925
npm
3,453
NuGet
594
pip
2,854
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+
21 advisories
Filter by severity
The (1) pipe_read and (2) pipe_write implementations in fs/pipe.c in a certain Linux kernel...
Moderate
Unreviewed
CVE-2016-0774
was published
May 17, 2022
sound/core/hrtimer.c in the Linux kernel before 4.4.1 does not prevent recursive callback access,...
Moderate
Unreviewed
CVE-2016-2549
was published
May 17, 2022
Race condition in the tty_ioctl function in drivers/tty/tty_io.c in the Linux kernel through 4.4...
Moderate
Unreviewed
CVE-2016-0723
was published
May 17, 2022
IBM Sametime 8.5.2 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users...
Moderate
Unreviewed
CVE-2016-2967
was published
May 17, 2022
The snd_seq_ioctl_remove_events function in sound/core/seq/seq_clientmgr.c in the Linux kernel...
Moderate
Unreviewed
CVE-2016-2543
was published
May 17, 2022
Race condition in the queue_delete function in sound/core/seq/seq_queue.c in the Linux kernel...
Moderate
Unreviewed
CVE-2016-2544
was published
May 17, 2022
The snd_timer_interrupt function in sound/core/timer.c in the Linux kernel before 4.4.1 does not...
Moderate
Unreviewed
CVE-2016-2545
was published
May 17, 2022
sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not...
Moderate
Unreviewed
CVE-2016-2547
was published
May 17, 2022
sound/core/timer.c in the Linux kernel before 4.4.1 uses an incorrect type of mutex, which allows...
Moderate
Unreviewed
CVE-2016-2546
was published
May 17, 2022
sound/core/timer.c in the Linux kernel before 4.4.1 retains certain linked lists after a close or...
Moderate
Unreviewed
CVE-2016-2548
was published
May 17, 2022
The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 through 3.10.0-229.14.1.el7...
Moderate
Unreviewed
CVE-2015-7833
was published
May 17, 2022
The (1) pipe_read and (2) pipe_write implementations in fs/pipe.c in the Linux kernel before 3.16...
High
Unreviewed
CVE-2015-1805
was published
May 14, 2022
drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify...
Critical
Unreviewed
CVE-2015-8812
was published
May 14, 2022
Race condition in arch/x86/mm/tlb.c in the Linux kernel before 4.4.1 allows local users to gain...
High
Unreviewed
CVE-2016-2069
was published
May 14, 2022
fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which...
Moderate
Unreviewed
CVE-2016-2847
was published
May 14, 2022
net/sctp/sm_sideeffect.c in the Linux kernel before 4.3 does not properly manage the relationship...
Moderate
Unreviewed
CVE-2015-8767
was published
May 14, 2022
The clie_5_attach function in drivers/usb/serial/visor.c in the Linux kernel through 4.4.1 allows...
Moderate
Unreviewed
CVE-2015-7566
was published
May 14, 2022
The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a...
Moderate
Unreviewed
CVE-2013-4312
was published
May 13, 2022
The aiptek_probe function in drivers/input/tablet/aiptek.c in the Linux kernel before 4.4 allows...
Moderate
Unreviewed
CVE-2015-7515
was published
May 13, 2022
The LIST_POISON feature in include/linux/poison.h in the Linux kernel before 4.3, as used in...
Moderate
Unreviewed
CVE-2016-0821
was published
May 13, 2022
The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel before 4.5 allows...
Moderate
Unreviewed
CVE-2016-2782
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API