GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
39 advisories
Filter by severity
A NULL pointer dereference flaw was found in pesign's cms_set_pw_data() function of the...
Low
Unreviewed
CVE-2022-1249
was published
Apr 30, 2022
The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead...
Low
Unreviewed
CVE-2001-1559
was published
Apr 30, 2022
Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when...
Low
Unreviewed
CVE-2005-3274
was published
May 1, 2022
The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the...
Low
Unreviewed
CVE-2009-3094
was published
May 2, 2022
The krb5_ldap_get_password_policy_from_dn function in plugins/kdb/ldap/libkdb_ldap...
Low
Unreviewed
CVE-2014-5353
was published
May 13, 2022
The install_special_mapping function in mm/mmap.c in the Linux kernel before 2.6.37-rc6 does not...
Low
Unreviewed
CVE-2010-4346
was published
May 13, 2022
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10,...
Low
Unreviewed
CVE-2017-17294
was published
May 14, 2022
A flaw was found in GlusterFS in versions prior to 3.10. A null pointer dereference in...
Low
Unreviewed
CVE-2017-15096
was published
May 17, 2022
The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of...
Low
Unreviewed
CVE-2014-3640
was published
May 17, 2022
fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer...
Low
Unreviewed
CVE-2019-18885
was published
May 24, 2022
A flaw was found in the Linux kernel's Bluetooth implementation of UART, all versions kernel 3.x...
Low
Unreviewed
CVE-2019-10207
was published
May 24, 2022
A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS...
Low
Unreviewed
CVE-2019-18388
was published
May 24, 2022
A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to...
Low
Unreviewed
CVE-2020-8002
was published
May 24, 2022
In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec...
Low
Unreviewed
CVE-2020-8448
was published
May 24, 2022
Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and...
Low
Unreviewed
CVE-2020-1814
was published
May 24, 2022
A NULL pointer dereference in sanei_epson_net_read in SANE Backends through 1.0.29 allows a...
Low
Unreviewed
CVE-2020-12867
was published
May 24, 2022
A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to...
Low
Unreviewed
CVE-2020-12866
was published
May 24, 2022
An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid...
Low
Unreviewed
CVE-2020-15304
was published
May 24, 2022
In QEMU 4.2.0, a MemoryRegionOps object may lack read/write callback methods, leading to a NULL...
Low
Unreviewed
CVE-2020-15469
was published
May 24, 2022
Adobe After Effects version 18.2 (and earlier) is affected by a Null pointer dereference...
Low
Unreviewed
CVE-2021-28601
was published
May 24, 2022
Acrobat Pro DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011...
Low
Unreviewed
CVE-2021-39860
was published
May 24, 2022
NVIDIA CUDA Toolkit SDK contains a bug in cuobjdump, where a local user running the tool against...
Low
Unreviewed
CVE-2023-0196
was published
Mar 2, 2023
NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer dereference in cuobjdump,...
Low
Unreviewed
CVE-2023-25510
was published
Apr 22, 2023
A vulnerability was found in FabulaTech USB for Remote Desktop 6.1.0.0. It has been rated as...
Low
Unreviewed
CVE-2023-2871
was published
May 24, 2023
NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the nvdisasm binary file...
Low
Unreviewed
CVE-2023-25523
was published
Jul 4, 2023
ProTip!
Advisories are also available from the
GraphQL API