GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,854 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
ipv6: fix possible UAF in...
High
Unreviewed
CVE-2024-44986
was published
Sep 4, 2024
Use after free in WebAudio in Google Chrome prior to 128.0.6613.119 allowed a remote attacker to...
High
Unreviewed
CVE-2024-8362
was published
Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix extent map use...
High
Unreviewed
CVE-2024-42314
was published
Aug 17, 2024
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel...
High
Unreviewed
CVE-2024-3655
was published
Sep 3, 2024
Memory corruption while releasing shared resources in MinkSocket listener thread.
High
Unreviewed
CVE-2024-23365
was published
Sep 2, 2024
Memory corruption when two threads try to map and unmap a single node simultaneously.
High
Unreviewed
CVE-2024-33060
was published
Sep 2, 2024
Memory corruption while processing IOCTL call for getting group info.
High
Unreviewed
CVE-2024-38402
was published
Sep 2, 2024
Memory corruption while processing concurrent IOCTL calls.
High
Unreviewed
CVE-2024-38401
was published
Sep 2, 2024
Use-After-Free, Out-of-bounds Write and Heap-based Buffer Overflow vulnerabilities exist in the...
High
Unreviewed
CVE-2023-2763
was published
Jul 12, 2023
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is...
High
Unreviewed
CVE-2024-41157
was published
Sep 2, 2024
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is...
High
Unreviewed
CVE-2024-41160
was published
Sep 2, 2024
In the Linux kernel, the following vulnerability has been resolved:
kunit: Fix kthread reference...
High
Unreviewed
CVE-2024-38561
was published
Jun 19, 2024
Inappropriate pointer order of map_sub_ and map_free(map_) (amcl_node.cpp) in Open Robotics...
High
Unreviewed
CVE-2024-25199
was published
Feb 20, 2024
bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after...
High
Unreviewed
CVE-2023-51779
was published
Feb 29, 2024
In the Linux kernel, the following vulnerability has been resolved:
net/mlx5: Always stop health...
High
Unreviewed
CVE-2024-40906
was published
Jul 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix a potential use...
High
Unreviewed
CVE-2024-40909
was published
Jul 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
misc: fastrpc: Fix use-after...
High
Unreviewed
CVE-2022-48874
was published
Aug 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: hci_qca: Fix...
High
Unreviewed
CVE-2022-48878
was published
Aug 21, 2024
fluent-bit 2.2.2 contains a Use-After-Free vulnerability in /fluent-bit/plugins/custom_calyptia...
High
Unreviewed
CVE-2024-26455
was published
Feb 26, 2024
In the Linux kernel, the following vulnerability has been resolved:
cachefiles: fix slab-use...
High
Unreviewed
CVE-2024-39510
was published
Jul 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
cachefiles: fix slab-use...
High
Unreviewed
CVE-2024-40899
was published
Jul 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
dmaengine: idxd: Fix...
High
Unreviewed
CVE-2024-40956
was published
Jul 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
netns: Make get_net_ns()...
High
Unreviewed
CVE-2024-40958
was published
Jul 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: do not leave a dangling...
High
Unreviewed
CVE-2024-40954
was published
Jul 12, 2024
In discovery_thread of Dns64Configuration.cpp, there is a possible memory corruption due to a use...
High
Unreviewed
CVE-2023-40100
was published
Feb 16, 2024
ProTip!
Advisories are also available from the
GraphQL API