GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
197 advisories
Filter by severity
The Bluetooth Classic implementation on Actions ATS2815 and ATS2819 chipsets does not properly...
Moderate
Unreviewed
CVE-2021-31785
was published
May 24, 2022
btrfs in the Linux kernel before 5.13.4 allows attackers to cause a denial of service (deadlock)...
Moderate
Unreviewed
CVE-2021-38203
was published
May 24, 2022
In memory management driver, there is a possible memory corruption due to improper locking. This...
High
Unreviewed
CVE-2021-0529
was published
May 24, 2022
A race condition was addressed with improved locking. This issue is fixed in macOS Big Sur 11.2,...
High
Unreviewed
CVE-2021-1782
was published
May 24, 2022
An issue was discovered in fs/io_uring.c in the Linux kernel through 5.11.8. It allows attackers...
Moderate
Unreviewed
CVE-2021-28951
was published
May 24, 2022
A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race...
High
Unreviewed
CVE-2021-26708
was published
May 24, 2022
gssproxy (aka gss-proxy) before 0.8.3 does not unlock cond_mutex before pthread exit in...
Critical
Unreviewed
CVE-2020-12658
was published
May 24, 2022
In priorLinearAllocation of C2AllocatorIon.cpp, there is a possible use-after-free due to...
Moderate
Unreviewed
CVE-2020-27035
was published
May 24, 2022
A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9...
High
Unreviewed
CVE-2020-29660
was published
May 24, 2022
A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers...
High
Unreviewed
CVE-2020-29661
was published
May 24, 2022
A lock screen issue allowed access to messages on a locked device. This issue was addressed with...
Low
Unreviewed
CVE-2020-9959
was published
May 24, 2022
This issue was addressed with improved checks. This issue is fixed in iOS 14.0 and iPadOS 14.0,...
Moderate
Unreviewed
CVE-2020-9946
was published
May 24, 2022
In binder_release_work of binder.c, there is a possible use-after-free due to improper locking....
High
Unreviewed
CVE-2020-0423
was published
May 24, 2022
In setUpdatableDriverPath of GpuService.cpp, there is a possible memory corruption due to a...
High
Unreviewed
CVE-2020-0420
was published
May 24, 2022
In SurfaceFlinger, there is a possible use-after-free due to improper locking. This could lead to...
High
Unreviewed
CVE-2020-0357
was published
May 24, 2022
An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md...
Moderate
Unreviewed
CVE-2020-12771
was published
May 24, 2022
Insufficient policy enforcement in downloads in Google Chrome on Windows prior to 79.0.3945.79...
Low
Unreviewed
CVE-2019-13762
was published
May 24, 2022
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of...
Moderate
Unreviewed
CVE-2019-17343
was published
May 24, 2022
An issue was discovered in OpenWrt libuci (aka Library for the Unified Configuration Interface)...
High
Unreviewed
CVE-2019-15513
was published
May 24, 2022
In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may...
Moderate
Unreviewed
CVE-2019-14763
was published
May 24, 2022
HP has identified a security vulnerability with some versions of Workstation BIOS (UEFI Firmware)...
High
Unreviewed
CVE-2019-6321
was published
May 24, 2022
HP has identified a security vulnerability with some versions of Workstation BIOS (UEFI Firmware)...
High
Unreviewed
CVE-2019-6322
was published
May 24, 2022
A vulnerability in the Remote Package Manager (RPM) subsystem of Cisco NX-OS Software could allow...
Moderate
Unreviewed
CVE-2019-1732
was published
May 24, 2022
A vulnerability in the logic that handles access control to one of the hardware components in...
High
Unreviewed
CVE-2019-1649
was published
May 24, 2022
The coredump implementation in the Linux kernel before 5.0.10 does not use locking or other...
High
Unreviewed
CVE-2019-11599
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API