GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
54 advisories
Filter by severity
Chrono has potential segfault issue in SPIFFE authenticator
Low
GHSA-45w3-v3g4-54pm
was published
for
parsec-service
(Rust)
Feb 11, 2022
The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the...
Low
Unreviewed
CVE-2009-3094
was published
May 2, 2022
A NULL pointer dereference in sanei_epson_net_read in SANE Backends through 1.0.29 allows a...
Low
Unreviewed
CVE-2020-12867
was published
May 24, 2022
fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer...
Low
Unreviewed
CVE-2019-18885
was published
May 24, 2022
Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and...
Low
Unreviewed
CVE-2020-1814
was published
May 24, 2022
Adobe After Effects version 18.2 (and earlier) is affected by a Null pointer dereference...
Low
Unreviewed
CVE-2021-28601
was published
May 24, 2022
Acrobat Pro DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011...
Low
Unreviewed
CVE-2021-39860
was published
May 24, 2022
A NULL pointer dereference flaw was found in pesign's cms_set_pw_data() function of the...
Low
Unreviewed
CVE-2022-1249
was published
Apr 30, 2022
In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec...
Low
Unreviewed
CVE-2020-8448
was published
May 24, 2022
An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid...
Low
Unreviewed
CVE-2020-15304
was published
May 24, 2022
A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS...
Low
Unreviewed
CVE-2019-18388
was published
May 24, 2022
A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to...
Low
Unreviewed
CVE-2020-8002
was published
May 24, 2022
The krb5_ldap_get_password_policy_from_dn function in plugins/kdb/ldap/libkdb_ldap...
Low
Unreviewed
CVE-2014-5353
was published
May 13, 2022
A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to...
Low
Unreviewed
CVE-2020-12866
was published
May 24, 2022
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10,...
Low
Unreviewed
CVE-2017-17294
was published
May 14, 2022
A flaw was found in the Linux kernel's Bluetooth implementation of UART, all versions kernel 3.x...
Low
Unreviewed
CVE-2019-10207
was published
May 24, 2022
In QEMU 4.2.0, a MemoryRegionOps object may lack read/write callback methods, leading to a NULL...
Low
Unreviewed
CVE-2020-15469
was published
May 24, 2022
A flaw was found in GlusterFS in versions prior to 3.10. A null pointer dereference in...
Low
Unreviewed
CVE-2017-15096
was published
May 17, 2022
The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of...
Low
Unreviewed
CVE-2014-3640
was published
May 17, 2022
The install_special_mapping function in mm/mmap.c in the Linux kernel before 2.6.37-rc6 does not...
Low
Unreviewed
CVE-2010-4346
was published
May 13, 2022
NVIDIA CUDA Toolkit SDK contains a bug in cuobjdump, where a local user running the tool against...
Low
Unreviewed
CVE-2023-0196
was published
Mar 2, 2023
A vulnerability was found in FabulaTech USB for Remote Desktop 6.1.0.0. It has been rated as...
Low
Unreviewed
CVE-2023-2871
was published
May 24, 2023
A vulnerability has been identified in JT2Go (All versions < V14.3.0.6), Teamcenter Visualization...
Low
Unreviewed
CVE-2023-51744
was published
Jan 9, 2024
Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when...
Low
Unreviewed
CVE-2005-3274
was published
May 1, 2022
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions),...
Low
Unreviewed
CVE-2024-23801
was published
Feb 13, 2024
ProTip!
Advisories are also available from the
GraphQL API