Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
46
Go
3,270
Maven
5,000+
npm
5,000+
NuGet
867
pip
4,517
Pub
12
RubyGems
998
Rust
1,194
Swift
51
Unreviewed advisories
All unreviewed
5,000+

13,536 advisories

Loading
The changelog command in Apt before 1.0.9.2 allows local users to write to arbitrary files via a... Low Unreviewed
CVE-2014-7206 was published May 13, 2022
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the... Low Unreviewed
CVE-2010-4021 was published May 13, 2022
The kadm5_randkey_principal_3 function in lib/kadm5/srv/svr_principal.c in kadmind in MIT... Low Unreviewed
CVE-2014-5351 was published May 13, 2022
do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 before 1.11.4... Low Unreviewed
CVE-2013-1417 was published May 13, 2022
plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x... Low Unreviewed
CVE-2014-5354 was published May 13, 2022
The installer in PEAR before 1.9.2 allows local users to overwrite arbitrary files via a symlink... Low Unreviewed
CVE-2011-1072 was published May 13, 2022
The installer in PEAR 1.9.2 and earlier allows local users to overwrite arbitrary files via a... Low Unreviewed
CVE-2011-1144 was published May 13, 2022
The Boat Browser application before 4.2 and Boat Browser Mini application before 3.9 for Android... Low Unreviewed
CVE-2012-5179 was published May 13, 2022
/opt/novell/ncl/bin/nwrights in Novell Client for Linux in Novell Open Enterprise Server (OES) 11... Low Unreviewed
CVE-2014-0595 was published May 13, 2022
The AliasHandler component in PostfixAdmin before 3.0.2 allows remote authenticated domain admins... Low Unreviewed
CVE-2017-5930 was published May 13, 2022
The feh_unique_filename function in utils.c in feh 1.11.2 and earlier might allow local users to... Low Unreviewed
CVE-2011-1031 was published May 13, 2022
The feh_unique_filename function in utils.c in feh before 1.11.2 might allow local users to... Low Unreviewed
CVE-2011-0702 was published May 13, 2022
EMC RSA Authentication Manager 8.0 before P2 and 7.1 before SP4 P26, as used in Appliance 3.0,... Low Unreviewed
CVE-2013-3273 was published May 13, 2022
Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x before 4.2.4-P1 and 4.1-ESV before 4.1-ESV-R6... Low Unreviewed
CVE-2012-3954 was published May 13, 2022
The Organic Groups (OG) module 7.x-1.x before 7.x-1.5 for Drupal does not properly maintain... Low Unreviewed
CVE-2012-5539 was published May 13, 2022
F-Secure Anti-Virus, Safe Anywhere, and PSB Workstation Security before 11500 for Mac OS X allows... Low Unreviewed
CVE-2012-6646 was published May 13, 2022
The openvpn_decrypt function in crypto.c in OpenVPN 2.3.0 and earlier, when running in UDP mode,... Low Unreviewed
CVE-2013-2061 was published May 13, 2022
The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel... Low Unreviewed
CVE-2013-7421 was published May 13, 2022
Google Chrome before 13.0.782.107 allows remote attackers to obtain sensitive information via a... Low Unreviewed
CVE-2011-2784 was published May 13, 2022
The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel... Low Unreviewed
CVE-2014-9644 was published May 13, 2022
The parse_rock_ridge_inode_internal function in fs/isofs/rock.c in the Linux kernel before 3.18.2... Low Unreviewed
CVE-2014-9584 was published May 13, 2022
The vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not... Low Unreviewed
CVE-2014-9585 was published May 13, 2022
The edit-profile page in Vanilla Forums before 2.1a32 allows remote authenticated users to modify... Low Unreviewed
CVE-2012-4954 was published May 13, 2022
** DISPUTED ** Kernel Samepage Merging (KSM) in the Linux kernel 2.6.32 through 4.x does not... Low Unreviewed
CVE-2015-2877 was published May 13, 2022
IBM Sterling Connect:Direct for Unix 4.1.0 before 4.1.0.4 iFix073 and 4.2.0 before 4.2.0.4... Low Unreviewed
CVE-2016-0380 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database