GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,440
Erlang
29
GitHub Actions
16
Go
1,666
Maven
4,926
npm
3,453
NuGet
594
pip
2,857
Pub
10
RubyGems
823
Rust
766
Swift
34
Unreviewed advisories
All unreviewed
5,000+
30 advisories
Filter by severity
An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur...
High
Unreviewed
CVE-2019-11810
was published
May 24, 2022
The Camera Upload functionality in Plex Media Server through 1.18.2.2029 allows remote...
Moderate
Unreviewed
CVE-2019-19141
was published
May 24, 2022
A vulnerability was found in Linux kernel's, versions up to 3.10, implementation of overlayfs. An...
Moderate
Unreviewed
CVE-2019-10140
was published
May 24, 2022
fs/ext4/extents.c in the Linux kernel through 5.1.2 does not zero out the unused memory region in...
Moderate
Unreviewed
CVE-2019-11833
was published
May 24, 2022
The coredump implementation in the Linux kernel before 5.0.10 does not use locking or other...
High
Unreviewed
CVE-2019-11599
was published
May 24, 2022
An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and...
High
Unreviewed
CVE-2019-3900
was published
May 24, 2022
A flaw was found in the Linux kernel's vfio interface implementation that permits violation of...
Moderate
Unreviewed
CVE-2019-3882
was published
May 24, 2022
In btm_proc_smp_cback of tm_ble.cc, there is a possible memory corruption due to a use after free...
High
Unreviewed
CVE-2019-2029
was published
May 24, 2022
The call parameter of /lib/exe/ajax.php in DokuWiki through 2017-02-19e does not properly encode...
High
Unreviewed
CVE-2017-18123
was published
May 14, 2022
An issue was discovered in the fd_locked_ioctl function in drivers/block/floppy.c in the Linux...
Moderate
Unreviewed
CVE-2018-7755
was published
May 14, 2022
In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead...
High
Unreviewed
CVE-2018-9517
was published
May 14, 2022
The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3...
Low
Unreviewed
CVE-2018-13053
was published
May 14, 2022
An issue was discovered in fs/xfs/libxfs/xfs_attr_leaf.c in the Linux kernel through 4.17.3. An...
Moderate
Unreviewed
CVE-2018-13094
was published
May 14, 2022
drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to...
High
Unreviewed
CVE-2018-14734
was published
May 14, 2022
An issue was discovered in fs/xfs/xfs_icache.c in the Linux kernel through 4.17.3. There is a...
Moderate
Unreviewed
CVE-2018-13093
was published
May 14, 2022
A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read...
High
Unreviewed
CVE-2018-14625
was published
May 14, 2022
An issue was discovered in the Linux kernel before 4.18.6. An information leak in...
Moderate
Unreviewed
CVE-2018-16658
was published
May 14, 2022
A flaw was found in the Linux kernel that allows the userspace to call memcpy_fromiovecend() and...
Moderate
Unreviewed
CVE-2018-16885
was published
May 14, 2022
In hid_debug_events_read of drivers/hid/hid-debug.c, there is a possible out of bounds write due...
High
Unreviewed
CVE-2018-9516
was published
May 14, 2022
Memory leak in the hwsim_new_radio_nl function in drivers/net/wireless/mac80211_hwsim.c in the...
Moderate
Unreviewed
CVE-2018-8087
was published
May 13, 2022
arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls,...
Moderate
Unreviewed
CVE-2018-15594
was published
May 13, 2022
A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as...
High
Unreviewed
CVE-2018-10853
was published
May 13, 2022
The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak.
Moderate
Unreviewed
CVE-2019-7222
was published
May 13, 2022
The mincore() implementation in mm/mincore.c in the Linux kernel through 4.19.13 allowed local...
Moderate
Unreviewed
CVE-2019-5489
was published
May 13, 2022
In the hidp_process_report in bluetooth, there is an integer overflow. This could lead to an out...
High
Unreviewed
CVE-2018-9363
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API