Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

41 advisories

Loading
A NULL pointer dereference flaw was found in pesign's cms_set_pw_data() function of the... Low Unreviewed
CVE-2022-1249 was published Apr 30, 2022
The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead... Low Unreviewed
CVE-2001-1559 was published Apr 30, 2022
Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when... Low Unreviewed
CVE-2005-3274 was published May 1, 2022
The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the... Low Unreviewed
CVE-2009-3094 was published May 2, 2022
The krb5_ldap_get_password_policy_from_dn function in plugins/kdb/ldap/libkdb_ldap... Low Unreviewed
CVE-2014-5353 was published May 13, 2022
The install_special_mapping function in mm/mmap.c in the Linux kernel before 2.6.37-rc6 does not... Low Unreviewed
CVE-2010-4346 was published May 13, 2022
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10,... Low Unreviewed
CVE-2017-17294 was published May 14, 2022
A flaw was found in GlusterFS in versions prior to 3.10. A null pointer dereference in... Low Unreviewed
CVE-2017-15096 was published May 17, 2022
The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of... Low Unreviewed
CVE-2014-3640 was published May 17, 2022
fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer... Low Unreviewed
CVE-2019-18885 was published May 24, 2022
A flaw was found in the Linux kernel's Bluetooth implementation of UART, all versions kernel 3.x... Low Unreviewed
CVE-2019-10207 was published May 24, 2022
A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS... Low Unreviewed
CVE-2019-18388 was published May 24, 2022
A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to... Low Unreviewed
CVE-2020-8002 was published May 24, 2022
In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec... Low Unreviewed
CVE-2020-8448 was published May 24, 2022
Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and... Low Unreviewed
CVE-2020-1814 was published May 24, 2022
A NULL pointer dereference in sanei_epson_net_read in SANE Backends through 1.0.29 allows a... Low Unreviewed
CVE-2020-12867 was published May 24, 2022
A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to... Low Unreviewed
CVE-2020-12866 was published May 24, 2022
An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid... Low Unreviewed
CVE-2020-15304 was published May 24, 2022
In QEMU 4.2.0, a MemoryRegionOps object may lack read/write callback methods, leading to a NULL... Low Unreviewed
CVE-2020-15469 was published May 24, 2022
Adobe After Effects version 18.2 (and earlier) is affected by a Null pointer dereference... Low Unreviewed
CVE-2021-28601 was published May 24, 2022
Acrobat Pro DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011... Low Unreviewed
CVE-2021-39860 was published May 24, 2022
NVIDIA CUDA Toolkit SDK contains a bug in cuobjdump, where a local user running the tool against... Low Unreviewed
CVE-2023-0196 was published Mar 2, 2023
NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer dereference in cuobjdump,... Low Unreviewed
CVE-2023-25510 was published Apr 22, 2023
A vulnerability was found in FabulaTech USB for Remote Desktop 6.1.0.0. It has been rated as... Low Unreviewed
CVE-2023-2871 was published May 24, 2023
NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the nvdisasm binary file... Low Unreviewed
CVE-2023-25523 was published Jul 4, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database