Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,156
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+

2,316 advisories

Loading
Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus. Moderate Unreviewed
CVE-2024-23357 was published Aug 5, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: prevent potential... Moderate Unreviewed
CVE-2024-42226 was published Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp: add a null... Moderate Unreviewed
CVE-2024-42074 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix NULL pointer... Moderate Unreviewed
CVE-2024-42079 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/xe/xe_devcoredump: Check... Moderate Unreviewed
CVE-2024-42081 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: ionic: fix kernel panic due... Moderate Unreviewed
CVE-2024-42083 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Add a NULL check in... Moderate Unreviewed
CVE-2024-42065 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix possible... Moderate Unreviewed
CVE-2024-42069 was published Jul 29, 2024
InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed
CVE-2024-41836 was published Jul 23, 2024
openssl's `MemBio::get_buf` has undefined behavior with empty buffers Moderate
GHSA-q445-7m23-qrmw was published for openssl (Rust) Jul 22, 2024
In the Linux kernel, the following vulnerability has been resolved: tipc: fix kernel panic when... Moderate Unreviewed
CVE-2022-48865 was published Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved: net-sysfs: add check for... Moderate Unreviewed
CVE-2022-48850 was published Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/vrr: Set VRR capable... Moderate Unreviewed
CVE-2022-48843 was published Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL pointer... Moderate Unreviewed
CVE-2022-48841 was published Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved: scsi: myrs: Fix crash in... Moderate Unreviewed
CVE-2022-48824 was published Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: nSVM: fix... Moderate Unreviewed
CVE-2022-48793 was published Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix NULL pointer... Moderate Unreviewed
CVE-2024-40951 was published Jul 12, 2024
Windows Remote Desktop Licensing Service Denial of Service Vulnerability High Unreviewed
CVE-2024-38072 was published Jul 9, 2024
A vulnerability has been identified in JT Open (All versions < V11.5), PLM XML SDK (All versions ... Moderate Unreviewed
CVE-2024-37996 was published Jul 9, 2024
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: ipc4-topology:... Moderate Unreviewed
CVE-2024-39473 was published Jul 5, 2024
null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker... Unknown Unreviewed
CVE-2024-38477 was published Jul 1, 2024
Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer... Unknown Unreviewed
CVE-2024-36387 was published Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions... High Unreviewed
CVE-2024-36982 was published Jul 1, 2024
A NULL Pointer Dereference discovered in DumpTS v0.1.0-nightly allows attackers to cause a denial... High Unreviewed
CVE-2024-39130 was published Jun 27, 2024
In the Linux kernel, the following vulnerability has been resolved: PCI: of_property: Return... Unknown Unreviewed
CVE-2024-34030 was published Jun 24, 2024
ProTip! Advisories are also available from the GraphQL API