GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,156
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
2,316 advisories
Filter by severity
Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.
Moderate
Unreviewed
CVE-2024-23357
was published
Aug 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
usb: xhci: prevent potential...
Moderate
Unreviewed
CVE-2024-42226
was published
Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved:
ASoC: amd: acp: add a null...
Moderate
Unreviewed
CVE-2024-42074
was published
Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved:
gfs2: Fix NULL pointer...
Moderate
Unreviewed
CVE-2024-42079
was published
Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/xe_devcoredump: Check...
Moderate
Unreviewed
CVE-2024-42081
was published
Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved:
ionic: fix kernel panic due...
Moderate
Unreviewed
CVE-2024-42083
was published
Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/xe: Add a NULL check in...
Moderate
Unreviewed
CVE-2024-42065
was published
Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: mana: Fix possible...
Moderate
Unreviewed
CVE-2024-42069
was published
Jul 29, 2024
InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by a NULL Pointer Dereference...
Moderate
Unreviewed
CVE-2024-41836
was published
Jul 23, 2024
openssl's `MemBio::get_buf` has undefined behavior with empty buffers
Moderate
GHSA-q445-7m23-qrmw
was published
for
openssl
(Rust)
Jul 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
tipc: fix kernel panic when...
Moderate
Unreviewed
CVE-2022-48865
was published
Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
net-sysfs: add check for...
Moderate
Unreviewed
CVE-2022-48850
was published
Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/vrr: Set VRR capable...
Moderate
Unreviewed
CVE-2022-48843
was published
Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
ice: fix NULL pointer...
Moderate
Unreviewed
CVE-2022-48841
was published
Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
scsi: myrs: Fix crash in...
Moderate
Unreviewed
CVE-2022-48824
was published
Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
KVM: x86: nSVM: fix...
Moderate
Unreviewed
CVE-2022-48793
was published
Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
ocfs2: fix NULL pointer...
Moderate
Unreviewed
CVE-2024-40951
was published
Jul 12, 2024
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
High
Unreviewed
CVE-2024-38072
was published
Jul 9, 2024
A vulnerability has been identified in JT Open (All versions < V11.5), PLM XML SDK (All versions ...
Moderate
Unreviewed
CVE-2024-37996
was published
Jul 9, 2024
In the Linux kernel, the following vulnerability has been resolved:
ASoC: SOF: ipc4-topology:...
Moderate
Unreviewed
CVE-2024-39473
was published
Jul 5, 2024
null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker...
Unknown
Unreviewed
CVE-2024-38477
was published
Jul 1, 2024
Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer...
Unknown
Unreviewed
CVE-2024-36387
was published
Jul 1, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36982
was published
Jul 1, 2024
A NULL Pointer Dereference discovered in DumpTS v0.1.0-nightly allows attackers to cause a denial...
High
Unreviewed
CVE-2024-39130
was published
Jun 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
PCI: of_property: Return...
Unknown
Unreviewed
CVE-2024-34030
was published
Jun 24, 2024
ProTip!
Advisories are also available from the
GraphQL API