GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,972
Composer 4,285
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,238
npm 3,741
NuGet 668
pip 3,422
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,199

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

283 advisories

Filter by severity

Sort by

Least recently updated

In the Linux kernel, the following vulnerability has been resolved: net:sfc: fix non-freed irq... Moderate Unreviewed

CVE-2021-47283 was published May 21, 2024

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't... Moderate Unreviewed

CVE-2024-53074 was published Nov 19, 2024

aiohttp has a memory leak when middleware is enabled when requesting a resource with a non-allowed method Moderate

CVE-2024-52303 was published for aiohttp (pip) Nov 18, 2024

Traefik vulnerable to potential DDoS via ACME HTTPChallenge Moderate

CVE-2023-47124 was published for github.com/traefik/traefik/v2 (Go) Dec 5, 2023

OpenVPN 2.6.10 and earlier in a server role accepts multiple exit notifications from... Moderate Unreviewed

CVE-2024-28882 was published Jul 9, 2024

In the Linux kernel, the following vulnerability has been resolved: netfs: Delete subtree of 'fs... Moderate Unreviewed

CVE-2024-47733 was published Oct 21, 2024

A vulnerability in the Remote Access VPN (RAVPN) service of Cisco Adaptive Security Appliance ... Moderate Unreviewed

CVE-2024-20481 was published Oct 23, 2024

A vulnerability in the login authentication functionality of the Remote Access SSL VPN feature of... Moderate Unreviewed

CVE-2024-20493 was published Oct 23, 2024

drivers/bluetooth/virtio_bt.c in the Linux kernel before 5.16.3 has a memory leak (socket buffers... Moderate Unreviewed

CVE-2022-26878 was published Mar 12, 2022

In MuPDF 1.12.0 and earlier, multiple memory leaks in the PDF parser allow an attacker to cause a... Moderate Unreviewed

CVE-2018-1000036 was published May 13, 2022

Apache Answer: The link to reset the user's password will remain valid after sending a new link Moderate

CVE-2024-41890 was published for github.com/apache/incubator-answer (Go) Aug 12, 2024

Apache Answer: The link for resetting user password is not Single-Use Moderate

CVE-2024-41888 was published for github.com/apache/incubator-answer (Go) Aug 12, 2024

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: fix missing... Moderate Unreviewed

CVE-2021-47389 was published May 21, 2024

In BIG-IP versions 17.0.x before 17.0.0.2, and 16.1.x beginning in 16.1.2.2 to before 16.1.3.3,... Moderate Unreviewed

CVE-2023-22302 was published Jul 6, 2023

An issue was discovered in the Linux kernel 4.18 through 5.6.11 when unprivileged user namespaces... Moderate Unreviewed

CVE-2019-20794 was published May 24, 2022

A memory leak was discovered in Mat_VarCalloc in mat.c in matio 1.5.17 because SafeMulDims does... Moderate Unreviewed

CVE-2019-20052 was published May 24, 2022

An exploitable vulnerability exists in the grsecurity PaX patch for the function read_kmem, in... Moderate Unreviewed

CVE-2019-5023 was published May 24, 2022

A missing check on incoming client requests can be exploited to cause a situation where the Kea... Moderate Unreviewed

CVE-2019-6474 was published May 24, 2022

libpng 1.6.37 has memory leaks in png_malloc_warn and png_create_info_struct. Moderate Unreviewed

CVE-2019-17371 was published May 24, 2022

A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages are... Moderate Unreviewed

CVE-2011-1490 was published Apr 22, 2022

A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages were... Moderate Unreviewed

CVE-2011-1489 was published Apr 22, 2022

vg_lookup in daemons/lvmetad/lvmetad-core.c in LVM2 2.02 mismanages memory, leading to an lvmetad... Moderate Unreviewed

CVE-2020-8991 was published May 24, 2022

Missing release of resource after effective lifetime (CWE-772) in the Controller 7000 resulted... Moderate Unreviewed

CVE-2024-22383 was published Mar 5, 2024

Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows... Moderate Unreviewed

CVE-1999-1127 was published Apr 30, 2022

Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions,... Moderate Unreviewed

CVE-2007-0897 was published May 1, 2022

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

283 advisories