Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,670
Maven
5,000+
npm
4,296
NuGet
760
pip
4,075
Pub
12
RubyGems
957
Rust
1,058
Swift
45
Unreviewed advisories
All unreviewed
5,000+

78 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: net: libwx: properly reset... Moderate Unreviewed
CVE-2025-38532 was published Aug 16, 2025
The ctl_write_buffer and ctl_read_buffer functions allocated memory to be returned to userspace,... High Unreviewed
CVE-2024-8178 was published Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved: vhost/vsock: always... High Unreviewed
CVE-2024-43873 was published Aug 21, 2024
Missing Initialization of Resource in Apache Arrow High
CVE-2019-12408 was published for pyarrow (RubyGems) May 24, 2022
In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix abort all... Moderate Unreviewed
CVE-2022-49217 was published Oct 21, 2025
PAD CMS improperly initializes parameter used for password recovery, which allows to change... High Unreviewed
CVE-2025-8117 was published Sep 30, 2025
In the Linux kernel, the following vulnerability has been resolved: thermal: testing: Initialize... Moderate Unreviewed
CVE-2024-56676 was published Dec 28, 2024
Moby firewalld reload makes published container ports accessible from remote hosts Moderate
CVE-2025-54388 was published for github.com/docker/docker (Go) Jul 29, 2025
Moby firewalld reload removes bridge network isolation Low
CVE-2025-54410 was published for github.com/docker/docker (Go) Jul 29, 2025
The ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before... Low Unreviewed
CVE-2011-1044 was published May 13, 2022
The snd_hdspm_hwdep_ioctl function in sound/pci/rme9652/hdspm.c in the Linux kernel before 2.6.36... Low Unreviewed
CVE-2010-4081 was published May 13, 2022
The copy_semid_to_user function in ipc/sem.c in the Linux kernel before 2.6.36 does not... Low Unreviewed
CVE-2010-4083 was published May 13, 2022
The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel before 2... Low Unreviewed
CVE-2010-4082 was published May 13, 2022
The sisfb_ioctl function in drivers/video/sis/sis_main.c in the Linux kernel before 2.6.36-rc6... Low Unreviewed
CVE-2010-4078 was published May 13, 2022
The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x... Low Unreviewed
CVE-2009-3228 was published May 2, 2022
ospf_te_parse_te in ospfd/ospf_te.c in FRRouting (FRR) through 9.1 allows remote attackers to... Moderate Unreviewed
CVE-2024-27913 was published Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved: llc: Drop support for... Moderate Unreviewed
CVE-2024-26635 was published Mar 18, 2024
Teradata Vantage Editor 1.0.1 is mostly intended for SQL database access and docs.teradata.com... High Unreviewed
CVE-2024-52870 was published Jan 17, 2025
In the Linux kernel, the following vulnerability has been resolved: vt: prevent kernel-infoleak... Moderate Unreviewed
CVE-2024-50076 was published Oct 29, 2024
Missing Initialization of Resource in Apache Arrow High
CVE-2019-12410 was published for pyarrow (RubyGems) May 24, 2022
ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted... High Unreviewed
CVE-2024-9780 was published Oct 10, 2024
Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault... Moderate Unreviewed
CVE-2023-5138 was published Jan 4, 2024
Mattermost Mobile Apps versions <=2.16.0 fail to protect against abuse of a globally shared... Low Unreviewed
CVE-2024-32945 was published Jul 15, 2024
In Eclipse Openj9 to version 0.25.0, usage of the jdk.internal.reflect.ConstantPool API causes... Moderate Unreviewed
CVE-2021-28167 was published May 24, 2022
curl 7.7 through 7.76.1 suffers from an information disclosure when the `-t` command line option,... High Unreviewed
CVE-2021-22898 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database