GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,231
Erlang
31
GitHub Actions
20
Go
1,991
Maven
5,000+
npm
3,709
NuGet
661
pip
3,341
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
33 advisories
Filter by severity
Uninitialized memory access in outer_cgi
Critical
CVE-2021-30454
was published
for
outer_cgi
(Rust)
Aug 25, 2021
Data race in ruspiro-singleton
High
CVE-2020-36435
was published
for
ruspiro-singleton
(Rust)
Aug 25, 2021
linux-loader reading beyond EOF could lead to infinite loop
Low
CVE-2022-23523
was published
for
linux-loader
(Rust)
Dec 12, 2022
Out of bounds write in nalgebra
Critical
CVE-2021-38190
was published
for
nalgebra
(Rust)
Aug 25, 2021
Wasmtime out of bounds read/write with zero-memory-pages configuration
Moderate
CVE-2022-39392
was published
for
wasmtime
(Rust)
Nov 10, 2022
Deserializing an array can free uninitialized memory in byte_struct
Critical
CVE-2021-28033
was published
for
byte_struct
(Rust)
Aug 25, 2021
crossbeam-channel Undefined Behavior before v0.4.4
High
CVE-2020-15254
was published
for
crossbeam-channel
(Rust)
Aug 25, 2021
nb-connect invalidly assumes the memory layout of std::net::SocketAddr
Critical
CVE-2021-27376
was published
for
nb-connect
(Rust)
Aug 25, 2021
Drop of uninitialized memory in Ozone
Critical
CVE-2020-35878
was published
for
ozone
(Rust)
Aug 25, 2021
Buffer overflow and format vulnerabilities in ncurses
Critical
CVE-2019-15548
was published
for
ncurses
(Rust)
Aug 25, 2021
quinn invalidly assumes the memory layout of std::net::SocketAddr
High
CVE-2021-28036
was published
for
quinn
(Rust)
Aug 25, 2021
Memory corruption slice-deque
Critical
CVE-2018-20995
was published
for
slice-deque
(Rust)
Aug 25, 2021
Heap overflow or corruption in safe-transmute
Critical
CVE-2018-21000
was published
for
safe-transmute
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API