Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

36 advisories

Loading
An information disclosure issue has been discovered in GitLab EE affecting all versions starting... Moderate Unreviewed
CVE-2024-4278 was published Sep 26, 2024
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS)... High Unreviewed
CVE-2024-7409 was published Aug 5, 2024
In the Linux kernel, the following vulnerability has been resolved: tracing: Restructure... Moderate Unreviewed
CVE-2021-46939 was published Feb 27, 2024
An issue exists in SoftIron HyperCloud where drive caddy removal and reinsertion without a reboot... High Unreviewed
CVE-2023-45084 was published Dec 5, 2023
A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset... Moderate Unreviewed
CVE-2023-5088 was published Nov 3, 2023
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-28229 was published Apr 11, 2023
In adsp, there is a possible double free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20625 was published Mar 7, 2023
In gpu, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20611 was published Feb 6, 2023
In ccu, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20607 was published Feb 6, 2023
In display drm, there is a possible memory corruption due to a race condition. This could lead to... Moderate Unreviewed
CVE-2023-20610 was published Feb 6, 2023
In ccd, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32643 was published Feb 6, 2023
In ccd, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32642 was published Feb 6, 2023
Western Digital has identified a weakness in the UFS standard that could result in a security... High Unreviewed
CVE-2022-23005 was published Jan 24, 2023
In vow, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32644 was published Jan 3, 2023
In disp, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32648 was published Jan 3, 2023
In vow, there is a possible information disclosure due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-32645 was published Jan 3, 2023
In vcu, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32609 was published Nov 9, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32610 was published Nov 9, 2022
In vcu, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32613 was published Nov 9, 2022
In vcu, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-32612 was published Nov 9, 2022
A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by... High Unreviewed
CVE-2022-3565 was published Oct 18, 2022
In vdec fmt, there is a possible use after free due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2022-26473 was published Oct 8, 2022
In isp, there is a possible use after free due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2022-26452 was published Oct 8, 2022
A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or... High Unreviewed
CVE-2022-2962 was published Sep 14, 2022
Incorrect Synchronization in GitHub repository polonel/trudesk prior to 1.2.3. High Unreviewed
CVE-2022-1931 was published Jun 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database