GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
313 advisories
Filter by severity
dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service ...
Low
Unreviewed
CVE-2014-3533
was published
May 14, 2022
The _dbus_printf_string_upper_bound function in dbus/dbus-sysdeps-unix.c in D-Bus (aka DBus) 1.4...
Low
Unreviewed
CVE-2013-2168
was published
May 14, 2022
fs/jfs/xattr.c in the Linux kernel before 2.6.35.2 does not properly handle a certain legacy...
Low
Unreviewed
CVE-2010-2946
was published
May 14, 2022
The ssl3_get_client_key_exchange function in s3_srvr.c in OpenSSL 1.0.2 before 1.0.2a, when...
Low
Unreviewed
CVE-2015-1787
was published
May 14, 2022
The Unity Settings Daemon before 14.04.0+14.04.20150825-0ubuntu2 and 15.04.x before 15.04.1+15.04...
Low
Unreviewed
CVE-2015-1319
was published
May 14, 2022
The kernel in Apple iOS before 6.1 and Apple TV before 5.2 does not properly validate copyin and...
Low
Unreviewed
CVE-2013-0964
was published
May 14, 2022
The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous...
Low
Unreviewed
CVE-2015-6563
was published
May 14, 2022
Insufficient input validation in Kernel Mode Driver in Intel(R) Graphics Driver for Windows*...
Low
Unreviewed
CVE-2018-12222
was published
May 14, 2022
This issue was addressed with improved entitlements. This issue affected versions prior to iOS 12.
Low
Unreviewed
CVE-2018-4322
was published
May 14, 2022
libvirt 1.0.0 through 1.2.x before 1.2.5, when fine grained access control is enabled, allows...
Low
Unreviewed
CVE-2014-5177
was published
May 14, 2022
libvirt 0.7.5 through 1.2.x before 1.2.5 allows local users to cause a denial of service (read...
Low
Unreviewed
CVE-2014-0179
was published
May 14, 2022
Virtual Machine Manager (VMM) in Hyper-V in Microsoft Windows 8.1 and Windows Server 2012 R2...
Low
Unreviewed
CVE-2015-1647
was published
May 14, 2022
Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program...
Low
Unreviewed
CVE-2014-9415
was published
May 14, 2022
The Meeting component in Huawei eSpace Desktop before V100R001C03 allows local users to cause a...
Low
Unreviewed
CVE-2014-9417
was published
May 14, 2022
Puppet 2.6.x before 2.6.12 and 2.7.x before 2.7.6, and Puppet Enterprise (PE) Users 1.0, 1.1, and...
Low
Unreviewed
CVE-2011-3872
was published
May 14, 2022
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. The issue...
Low
Unreviewed
CVE-2017-2351
was published
May 13, 2022
An input validation flaw was found in the way OpenShift 3 handles requests for images. A user,...
Low
Unreviewed
CVE-2016-8651
was published
May 13, 2022
IBM Campaign 9.1.0, 9.1.2, 10.0, and 10.1 could allow an authenticated user with access to the...
Low
Unreviewed
CVE-2016-9749
was published
May 13, 2022
Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, and 3.5.x before 3.5.4, when...
Low
Unreviewed
CVE-2015-3455
was published
May 13, 2022
APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import...
Low
Unreviewed
CVE-2012-3587
was published
May 13, 2022
APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import...
Low
Unreviewed
CVE-2012-0954
was published
May 13, 2022
do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 before 1.11.4...
Low
Unreviewed
CVE-2013-1417
was published
May 13, 2022
The parse_rock_ridge_inode_internal function in fs/isofs/rock.c in the Linux kernel before 3.18.2...
Low
Unreviewed
CVE-2014-9584
was published
May 13, 2022
The ocfs2_prepare_page_for_write function in fs/ocfs2/aops.c in the Oracle Cluster File System 2 ...
Low
Unreviewed
CVE-2011-0463
was published
May 13, 2022
The osf_partition function in fs/partitions/osf.c in the Linux kernel before 2.6.38 does not...
Low
Unreviewed
CVE-2011-1163
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API