GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,156
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
4,030 advisories
Filter by severity
Use after free in WebAudio in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to...
High
Unreviewed
CVE-2024-7536
was published
Aug 6, 2024
Use after free in Sharing in Google Chrome on iOS prior to 127.0.6533.99 allowed a remote...
High
Unreviewed
CVE-2024-7533
was published
Aug 6, 2024
Use after free in User Education in Google Chrome prior to 127.0.6533.72 allowed a remote...
High
Unreviewed
CVE-2024-6998
was published
Aug 6, 2024
Use after free in Downloads in Google Chrome on iOS prior to 127.0.6533.72 allowed a remote...
High
Unreviewed
CVE-2024-6988
was published
Aug 6, 2024
Use after free in Tabs in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who...
High
Unreviewed
CVE-2024-6997
was published
Aug 6, 2024
Use after free in Loader in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to...
High
Unreviewed
CVE-2024-6989
was published
Aug 6, 2024
Use after free in Dawn in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to...
High
Unreviewed
CVE-2024-6991
was published
Aug 6, 2024
Use after free in CSS in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who...
High
Unreviewed
CVE-2024-7000
was published
Aug 6, 2024
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when...
High
Unreviewed
CVE-2024-33034
was published
Aug 5, 2024
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
High
Unreviewed
CVE-2024-33010
was published
Aug 5, 2024
Memory corruption while processing graphics kernel driver request to create DMA fence.
High
Unreviewed
CVE-2024-23382
was published
Aug 5, 2024
Memory corruption when memory mapped in a VBO is not unmapped by the GPU SMMU.
High
Unreviewed
CVE-2024-23381
was published
Aug 5, 2024
Memory corruption when kernel driver attempts to trigger hardware fences.
High
Unreviewed
CVE-2024-23383
was published
Aug 5, 2024
Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker.
High
Unreviewed
CVE-2024-23384
was published
Aug 5, 2024
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal...
High
Unreviewed
CVE-2024-33023
was published
Aug 5, 2024
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is...
High
Unreviewed
CVE-2024-33028
was published
Aug 5, 2024
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel...
High
Unreviewed
CVE-2024-2937
was published
Aug 5, 2024
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel...
High
Unreviewed
CVE-2024-4607
was published
Aug 5, 2024
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS...
Critical
Unreviewed
CVE-2024-40782
was published
Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved:
mlxsw: spectrum_buffers: Fix...
Moderate
Unreviewed
CVE-2024-42073
was published
Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix remap of arena.
...
Moderate
Unreviewed
CVE-2024-42075
was published
Jul 29, 2024
Memory request logic vulnerability in the memory module.
Impact: Successful exploitation of this...
High
Unreviewed
CVE-2024-39672
was published
Jul 25, 2024
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix too early release...
Moderate
Unreviewed
CVE-2024-41010
was published
Jul 17, 2024
Use after free in Accessibility in Google Chrome prior to 122.0.6261.57 allowed a remote attacker...
High
Unreviewed
CVE-2024-3171
was published
Jul 17, 2024
Use after free in DevTools in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to...
High
Unreviewed
CVE-2024-3168
was published
Jul 17, 2024
ProTip!
Advisories are also available from the
GraphQL API