Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,145
NuGet
735
pip
3,947
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

387 advisories

Loading
A maliciously crafted STP file, when parsed in stp_aim_x64_vc15d.dll through Autodesk... High Unreviewed
CVE-2024-23159 was published Jun 25, 2024
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value... High Unreviewed
CVE-2024-38381 was published Jun 21, 2024
In the Linux kernel, the following vulnerability has been resolved: block: Fix wrong offset in... High Unreviewed
CVE-2022-48747 was published Jun 20, 2024
In the Linux kernel, the following vulnerability has been resolved: media: mxl111sf: change... Moderate Unreviewed
CVE-2021-47583 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: inet_diag: fix kernel... Moderate Unreviewed
CVE-2021-47597 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: net: bridge: xmit: make sure... High Unreviewed
CVE-2024-38538 was published Jun 19, 2024
Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this... High Unreviewed
CVE-2024-36503 was published Jun 14, 2024
In AcvpOnMessage of avcp.cpp, there is a possible EOP due to uninitialized data. This could lead... High Unreviewed
CVE-2024-32906 was published Jun 13, 2024
In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack... Moderate Unreviewed
CVE-2024-32910 was published Jun 13, 2024
In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible... Moderate Unreviewed
CVE-2024-29780 was published Jun 13, 2024
In aur_get_state of aurora.c, there is a possible information disclosure due to uninitialized... Moderate Unreviewed
CVE-2024-29785 was published Jun 13, 2024
Use of uninitialized resource issue exists in IPCOM EX2 Series (V01L0x Series) V01L07NF0201 and... Moderate Unreviewed
CVE-2024-36454 was published Jun 12, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: do not allow... Moderate Unreviewed
CVE-2021-47462 was published May 22, 2024
In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Fix uninit... High Unreviewed
CVE-2023-52842 was published May 21, 2024
In the Linux kernel, the following vulnerability has been resolved: tipc: Change nla_policy for... Moderate Unreviewed
CVE-2023-52845 was published May 21, 2024
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: explicitly... Moderate Unreviewed
CVE-2021-47339 was published May 21, 2024
In the Linux kernel, the following vulnerability has been resolved: net: fix uninit-value in... Moderate Unreviewed
CVE-2021-47297 was published May 21, 2024
In the Linux kernel, the following vulnerability has been resolved: geneve: fix header... Moderate Unreviewed
CVE-2024-35973 was published May 20, 2024
In the Linux kernel, the following vulnerability has been resolved: erspan: make sure... Moderate Unreviewed
CVE-2024-35888 was published May 19, 2024
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value... Moderate Unreviewed
CVE-2024-35915 was published May 19, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix information leak... High Unreviewed
CVE-2024-35849 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: cpumap: Zero-initialise... Moderate Unreviewed
CVE-2024-27431 was published May 17, 2024
ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an... High Unreviewed
CVE-2023-6324 was published May 15, 2024
HDF5 Library through 1.14.3 may attempt to dereference uninitialized values in h5tools_str_sprint... Moderate Unreviewed
CVE-2024-32606 was published May 14, 2024
HDF5 Library through 1.14.3 may use an uninitialized value in H5A__attr_release_table in H5Aint.c. Critical Unreviewed
CVE-2024-32611 was published May 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database