Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,984
Maven
5,000+
npm
3,701
NuGet
657
pip
3,325
Pub
11
RubyGems
882
Rust
835
Swift
35
Unreviewed advisories
All unreviewed
5,000+

69 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: vt: prevent kernel-infoleak... Moderate Unreviewed
CVE-2024-50076 was published Oct 29, 2024
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted... High Unreviewed
CVE-2024-9780 was published Oct 10, 2024
The ctl_write_buffer and ctl_read_buffer functions allocated memory to be returned to userspace,... High Unreviewed
CVE-2024-8178 was published Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved: vhost/vsock: always... High Unreviewed
CVE-2024-43873 was published Aug 21, 2024
Mattermost Mobile Apps versions <=2.16.0 fail to protect against abuse of a globally shared... Low Unreviewed
CVE-2024-32945 was published Jul 15, 2024
Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault... Moderate Unreviewed
CVE-2023-5138 was published Jan 4, 2024
A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly... Moderate Unreviewed
CVE-2022-0175 was published Aug 27, 2022
In writeToParcel of SurfaceControl.cpp, there is a possible information disclosure due to... Moderate Unreviewed
CVE-2022-20357 was published Aug 11, 2022
Access of uninitialized pointer vulnerability exists in the simulator module contained in the... High Unreviewed
CVE-2022-29925 was published Jun 15, 2022
In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to... Moderate Unreviewed
CVE-2019-16714 was published May 24, 2022
There is an Uninitialized variable vulnerability in Huawei Smartphone.Successful exploitation of... Moderate Unreviewed
CVE-2021-22482 was published May 24, 2022
An issue was discovered in function sofia_handle_sip_i_notify in sofia.c in SignalWire freeswitch... High Unreviewed
CVE-2021-36513 was published May 24, 2022
In memory management driver, there is a possible information disclosure due to uninitialized data... Moderate Unreviewed
CVE-2021-0423 was published May 24, 2022
An information disclosure vulnerability exists in AMD Platform Security Processor (PSP) chipset... Moderate Unreviewed
CVE-2021-26333 was published May 24, 2022
Uninitialized memory in a canvas object could have caused an incorrect free() leading to memory... High Unreviewed
CVE-2021-29980 was published May 24, 2022
A vulnerability was found in the Linux kernel in versions before v5.14-rc1. Missing size... Low Unreviewed
CVE-2021-3655 was published May 24, 2022
report_vbuild in report.c in Fetchmail before 6.4.20 sometimes omits initialization of the... High Unreviewed
CVE-2021-36386 was published May 24, 2022
A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out... High Unreviewed
CVE-2021-23994 was published May 24, 2022
net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive... Moderate Unreviewed
CVE-2021-34693 was published May 24, 2022
HVM soft-reset crashes toolstack libxl requires all data structures passed across its public... Moderate Unreviewed
CVE-2021-28687 was published May 24, 2022
curl 7.7 through 7.76.1 suffers from an information disclosure when the `-t` command line option,... High Unreviewed
CVE-2021-22898 was published May 24, 2022
In readVector of IMediaPlayer.cpp, there is a possible read of uninitialized heap data due to a... Moderate Unreviewed
CVE-2021-0484 was published May 24, 2022
In Eclipse Openj9 to version 0.25.0, usage of the jdk.internal.reflect.ConstantPool API causes... Moderate Unreviewed
CVE-2021-28167 was published May 24, 2022
A vulnerability in the PDF parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0... High Unreviewed
CVE-2021-1405 was published May 24, 2022
Missing initialization of a variable in the TPM2 source may allow a privileged user to... Moderate Unreviewed
CVE-2020-24455 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database