Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

243 advisories

Loading
Data race in va-ts Moderate
CVE-2020-36220 was published for va-ts (Rust) Aug 25, 2021
In camera driver, there is a possible memory corruption due to improper locking. This could lead... Moderate Unreviewed
CVE-2022-38690 was published Oct 15, 2022
A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance ... High Unreviewed
CVE-2018-0228 was published May 13, 2022
A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race... High Unreviewed
CVE-2021-26708 was published May 24, 2022
Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain... Low Unreviewed
CVE-2023-44298 was published Dec 5, 2023
Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain... High Unreviewed
CVE-2023-44297 was published Dec 5, 2023
Cortex-A77 cores (r0p0 and r1p0) are affected by erratum 1508412 where software, under certain... Moderate Unreviewed
CVE-2023-34320 was published Dec 8, 2023
The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of... High Unreviewed
CVE-2023-2007 was published Apr 25, 2023
In multiple functions of io_uring.c, there is a possible kernel memory corruption due to... Moderate Unreviewed
CVE-2023-21400 was published Jul 13, 2023
A denial of service vulnerability was found in tipc_crypto_key_revoke in net/tipc/crypto.c in the... Moderate Unreviewed
CVE-2024-0641 was published Jan 17, 2024
A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in net... Moderate Unreviewed
CVE-2024-0639 was published Jan 17, 2024
Racy interactions between dirty vram tracking and paging log dirty hypercalls Activation of log... Moderate Unreviewed
CVE-2022-26356 was published Apr 6, 2022
Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which... Moderate Unreviewed
CVE-2000-0338 was published Apr 30, 2022
mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and possibly remote attackers to cause a... Moderate Unreviewed
CVE-2002-1850 was published Apr 30, 2022
Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6... Low Unreviewed
CVE-2005-2456 was published May 1, 2022
The inotify_read function in the Linux kernel 2.6.27 to 2.6.27.13, 2.6.28 to 2.6.28.2, and 2.6.29... Moderate Unreviewed
CVE-2009-0935 was published May 2, 2022
A race condition was addressed with improved locking. This issue is fixed in macOS Big Sur 11.2,... High Unreviewed
CVE-2021-1782 was published May 24, 2022
A denial of service problem was found, due to a possible recursive locking scenario, resulting in... Moderate Unreviewed
CVE-2023-2269 was published Apr 25, 2023
Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log... Low Unreviewed
CVE-2002-1869 was published Apr 30, 2022
The kernel in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_103, does not properly handle... Moderate Unreviewed
CVE-2009-2857 was published May 2, 2022
tip on multiple BSD-based operating systems allows local users to cause a denial of service ... Low Unreviewed
CVE-2002-1915 was published Apr 30, 2022
Windows 2000 allows local users to prevent the application of new group policy settings by... Moderate Unreviewed
CVE-2002-0051 was published Apr 30, 2022
qpopper POP server creates lock files with predictable names, which allows local users to cause a... Low Unreviewed
CVE-2000-1198 was published Apr 30, 2022
dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention)... Low Unreviewed
CVE-2002-1914 was published Apr 30, 2022
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (deadlock)... Moderate Unreviewed
CVE-2006-2275 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database