Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

69 advisories

Loading
There is an Uninitialized variable vulnerability in Huawei Smartphone.Successful exploitation of... Moderate Unreviewed
CVE-2021-22482 was published May 24, 2022
In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to... Moderate Unreviewed
CVE-2019-16714 was published May 24, 2022
A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly... Moderate Unreviewed
CVE-2022-0175 was published Aug 27, 2022
The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x... Low Unreviewed
CVE-2009-3228 was published May 2, 2022
In writeToParcel of SurfaceControl.cpp, there is a possible information disclosure due to... Moderate Unreviewed
CVE-2022-20357 was published Aug 11, 2022
It was found that cockpit before version 184 used glib's base64 decode functionality incorrectly... High Unreviewed
CVE-2019-3804 was published May 13, 2022
strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a... High Unreviewed
CVE-2018-10811 was published May 13, 2022
Memory corruption in array-tools Critical
CVE-2020-36452 was published for array-tools (Rust) Aug 25, 2021
In quota_proc_write of xt_quota2.c, there is a possible way to read kernel memory due to... Moderate Unreviewed
CVE-2021-0961 was published Dec 16, 2021
The copy_semid_to_user function in ipc/sem.c in the Linux kernel before 2.6.36 does not... Low Unreviewed
CVE-2010-4083 was published May 13, 2022
Python's elementtree C accelerator failed to initialise Expat's hash salt during initialization.... High Unreviewed
CVE-2018-14647 was published May 13, 2022
The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel before 2... Low Unreviewed
CVE-2010-4082 was published May 13, 2022
The sisfb_ioctl function in drivers/video/sis/sis_main.c in the Linux kernel before 2.6.36-rc6... Low Unreviewed
CVE-2010-4078 was published May 13, 2022
The ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before... Low Unreviewed
CVE-2011-1044 was published May 13, 2022
The snd_hdspm_hwdep_ioctl function in sound/pci/rme9652/hdspm.c in the Linux kernel before 2.6.36... Low Unreviewed
CVE-2010-4081 was published May 13, 2022
A denial of service vulnerability in the Android media framework (h264 decoder). Product: Android... Moderate Unreviewed
CVE-2017-0730 was published May 13, 2022
In ipSecSetEncapSocketOwner of XfrmController.cpp, there is a possible failure to initialize a... Moderate Unreviewed
CVE-2018-9511 was published May 13, 2022
report_vbuild in report.c in Fetchmail before 6.4.20 sometimes omits initialization of the... High Unreviewed
CVE-2021-36386 was published May 24, 2022
There is an Uninitialized AOD driver structure in Smartphones.Successful exploitation of this... High Unreviewed
CVE-2021-39966 was published Jan 4, 2022
An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. If an application sets... Low Unreviewed
CVE-2022-24448 was published Feb 10, 2022
net/packet/af_packet.c in the Linux kernel before 2.6.37-rc2 does not properly initialize certain... Low Unreviewed
CVE-2010-3876 was published May 13, 2022
The get_name function in net/tipc/socket.c in the Linux kernel before 2.6.37-rc2 does not... Low Unreviewed
CVE-2010-3877 was published May 13, 2022
The eql_g_master_cfg function in drivers/net/eql.c in the Linux kernel before 2.6.36-rc5 does not... Low Unreviewed
CVE-2010-3297 was published May 13, 2022
Missing Initialization of Resource in pnet High
CVE-2019-25054 was published for pnet (Rust) Jan 6, 2022
im_vips2dz in /libvips/libvips/deprecated/im_vips2dz.c in libvips before 8.8.2 has an... Moderate Unreviewed
CVE-2020-20739 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database