Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,984
Maven
5,000+
npm
3,701
NuGet
657
pip
3,325
Pub
11
RubyGems
882
Rust
835
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

16 advisories

Loading
An Invalid Pointer vulnerability exists in GNU patch 2.7 via the another_hunk function, which... Moderate Unreviewed
CVE-2021-45261 was published Dec 23, 2021
There is a release of invalid pointer vulnerability in some Huawei products, successful exploit... Moderate Unreviewed
CVE-2021-40042 was published Feb 1, 2022
lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an... Moderate Unreviewed
CVE-2015-2695 was published May 13, 2022
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is an invalid... Moderate Unreviewed
CVE-2019-20170 was published May 24, 2022
lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a... Moderate Unreviewed
CVE-2020-24371 was published May 24, 2022
An issue was discovered in drivers/accessibility/speakup/spk_ttyio.c in the Linux kernel through... Moderate Unreviewed
CVE-2020-28941 was published May 24, 2022
An invalid memory address reference was discovered in the elf_lookup function in p_lx_elf.cpp in... Moderate Unreviewed
CVE-2020-27797 was published Aug 26, 2022
An invalid memory address reference was discovered in the adjABS function in p_lx_elf.cpp in UPX... Moderate Unreviewed
CVE-2020-27798 was published Aug 26, 2022
It was found in libtiff 4.4.0rc1 that there is an invalid pointer free operation in TIFFClose()... Moderate Unreviewed
CVE-2022-2521 was published Sep 1, 2022
Denial of service in MODEM due to improper pointer handling Moderate Unreviewed
CVE-2022-25725 was published Jan 9, 2023
libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer... Moderate Unreviewed
CVE-2020-27545 was published Apr 16, 2023
An issue was discovered in drivers/tty/n_gsm.c in the Linux kernel 6.2. There is a sleeping... Moderate Unreviewed
CVE-2023-31082 was published Apr 24, 2023
Copy_from_user on 64-bit versions of the Linux kernel does not implement the... Moderate Unreviewed
CVE-2023-0459 was published Jul 6, 2023
A lack of pointer-validation logic in the __scone_dispatch component of SCONE before v5.8.0 for... Moderate Unreviewed
CVE-2022-46486 was published Dec 30, 2023
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix releasing... Moderate Unreviewed
CVE-2021-47615 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Page fault in... Moderate Unreviewed
CVE-2022-48835 was published Jul 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database