Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,168
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
832
Swift
35
Unreviewed advisories
All unreviewed
5,000+

54 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: usb: typec: tipd: Free IRQ... Low Unreviewed
CVE-2024-50057 was published Oct 21, 2024
nanopb vulnerable to invalid free() call with oneofs and PB_ENABLE_MALLOC High
CVE-2021-21401 was published for nanopb (pip) Aug 30, 2024
In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Page fault in... Moderate Unreviewed
CVE-2022-48835 was published Jul 16, 2024
It was possible to prevent a user from exiting pointerlock when pressing escape and to overlay... High Unreviewed
CVE-2024-6607 was published Jul 9, 2024
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix releasing... Moderate Unreviewed
CVE-2021-47615 was published Jun 19, 2024
A memory corruption vulnerability in HddPassword in Insyde InsydeH2O kernel 5.2 before 05.29.09,... High Unreviewed
CVE-2024-25079 was published May 15, 2024
Memory corruption while reading ACPI config through the user mode app. High Unreviewed
CVE-2023-43532 was published Feb 6, 2024
A lack of pointer-validation logic in the __scone_dispatch component of SCONE before v5.8.0 for... Moderate Unreviewed
CVE-2022-46486 was published Dec 30, 2023
The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted... High Unreviewed
CVE-2022-26942 was published Oct 19, 2023
Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an... High Unreviewed
CVE-2023-4883 was published Oct 3, 2023
Copy_from_user on 64-bit versions of the Linux kernel does not implement the... Moderate Unreviewed
CVE-2023-0459 was published Jul 6, 2023
In Tencent QQ through 9.7.8.29039 and TIM through 3.4.7.22084, QQProtect.exe and QQProtectEngine... High Unreviewed
CVE-2023-34312 was published Jun 1, 2023
An issue was discovered in drivers/tty/n_gsm.c in the Linux kernel 6.2. There is a sleeping... Moderate Unreviewed
CVE-2023-31082 was published Apr 24, 2023
libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer... Moderate Unreviewed
CVE-2020-27545 was published Apr 16, 2023
In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not... High Unreviewed
CVE-2022-48425 was published Mar 19, 2023
There exists a use-after-free vulnerability in the Linux kernel through io_uring and the... High Unreviewed
CVE-2022-4696 was published Jan 11, 2023
Denial of service in MODEM due to improper pointer handling Moderate Unreviewed
CVE-2022-25725 was published Jan 9, 2023
Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can... High Unreviewed
CVE-2022-42309 was published Nov 1, 2022
When a BIG-IP Advanced WAF/ASM security policy is configured on a virtual server, undisclosed... High Unreviewed
CVE-2022-41691 was published Oct 20, 2022
Information disclosure due to untrusted pointer dereference in kernel in Snapdragon Auto,... High Unreviewed
CVE-2022-25662 was published Oct 19, 2022
Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon... High Unreviewed
CVE-2022-25661 was published Oct 19, 2022
A denial-of-service issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1... High Unreviewed
CVE-2022-28203 was published Sep 20, 2022
It was found in libtiff 4.4.0rc1 that there is an invalid pointer free operation in TIFFClose()... Moderate Unreviewed
CVE-2022-2521 was published Sep 1, 2022
An invalid memory address reference was discovered in the elf_lookup function in p_lx_elf.cpp in... Moderate Unreviewed
CVE-2020-27797 was published Aug 26, 2022
An invalid memory address reference was discovered in the adjABS function in p_lx_elf.cpp in UPX... Moderate Unreviewed
CVE-2020-27798 was published Aug 26, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database