Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,190
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,702
NuGet
656
pip
3,326
Pub
11
RubyGems
883
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

45 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: mac80211: track only QoS... Moderate Unreviewed
CVE-2021-47602 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix uninitialized... Moderate Unreviewed
CVE-2024-50087 was published Oct 29, 2024
SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via... Moderate Unreviewed
CVE-2024-8645 was published Sep 10, 2024
NULL pointer access vulnerability in the clock module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-32998 was published May 14, 2024
A access of uninitialized pointer vulnerability [CWE-824] in Fortinet FortiProxy version 7.2.0... Moderate Unreviewed
CVE-2023-29178 was published Jun 13, 2023
Adobe Substance 3D Painter versions 8.3.0 (and earlier) is affected by an Access of Uninitialized... Moderate Unreviewed
CVE-2023-29286 was published May 12, 2023
Multiple uninitialized pointer vulnerabilities when parsing a specially crafted file in Esri... Moderate Unreviewed
CVE-2021-29095 was published May 24, 2022
EnterpriseDB Advanced Server 8.2 does not properly handle certain debugging function calls that... Moderate Unreviewed
CVE-2007-4639 was published May 1, 2022
CoreText in Apple Mac OS X 10.4 through 10.4.10 allows attackers to cause a denial of service ... Moderate Unreviewed
CVE-2007-4682 was published May 1, 2022
ldbm_back_exop_passwd in the back-ldbm backend in passwd.c for OpenLDAP 2.1.12 and earlier, when... Moderate Unreviewed
CVE-2003-1201 was published Apr 29, 2022
lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA... Moderate Unreviewed
CVE-2009-1415 was published May 2, 2022
The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1... Moderate Unreviewed
CVE-2009-1721 was published May 2, 2022
A user able to control file input to Gerbv, between versions 2.4.0 and 2.10.0, can cause a crash... Moderate Unreviewed
CVE-2023-4508 was published Aug 25, 2023
Adobe Prelude versions 22.6 and earlier are affected by an Access of Uninitialized Pointer... Moderate Unreviewed
CVE-2023-44362 was published Dec 13, 2023
lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1... Moderate Unreviewed
CVE-2023-36054 was published Aug 7, 2023
Adobe Audition version 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an Access of... Moderate Unreviewed
CVE-2023-47053 was published Nov 16, 2023
Adobe Substance 3D Stager version 2.0.1 (and earlier) is affected by an Access of Uninitialized... Moderate Unreviewed
CVE-2023-26387 was published Apr 13, 2023
Adobe Substance 3D Stager version 2.0.1 (and earlier) is affected by an Access of Uninitialized... Moderate Unreviewed
CVE-2023-26386 was published Apr 13, 2023
Adobe Dimension versions 3.4.7 (and earlier) is affected by an Access of Uninitialized Pointer... Moderate Unreviewed
CVE-2023-26344 was published Mar 28, 2023
An access of uninitialized pointer vulnerability [CWE-824] in the SSL VPN portal of Fortinet... Moderate Unreviewed
CVE-2022-45861 was published Mar 7, 2023
A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input... Moderate Unreviewed
CVE-2022-1122 was published Mar 30, 2022
Access of uninitialized pointer in the Intel(R) Trace Analyzer and Collector before version 2021... Moderate Unreviewed
CVE-2022-21156 was published Feb 11, 2022
In the MDSS driver in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from... Moderate Unreviewed
CVE-2018-5860 was published May 14, 2022
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device in versions prior... Moderate Unreviewed
CVE-2021-3608 was published Feb 25, 2022
Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 do... Moderate Unreviewed
CVE-2014-1564 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database