GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
24 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
udf: Fix bogus checksum...
Low
Unreviewed
CVE-2024-43845
was published
Aug 17, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An...
Low
Unreviewed
CVE-2024-45615
was published
Sep 4, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An...
Low
Unreviewed
CVE-2024-45616
was published
Sep 4, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An...
Low
Unreviewed
CVE-2024-45617
was published
Sep 4, 2024
A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or...
Low
Unreviewed
CVE-2024-45618
was published
Sep 4, 2024
In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an...
Low
Unreviewed
CVE-2024-7868
was published
Aug 15, 2024
oFono AT CMT Command Uninitialized Variable Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2024-7541
was published
Aug 6, 2024
oFono AT CMGR Command Uninitialized Variable Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2024-7542
was published
Aug 6, 2024
oFono AT CMGL Command Uninitialized Variable Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2024-7540
was published
Aug 6, 2024
OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2021-35000
was published
May 8, 2024
OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability. This...
Low
Unreviewed
CVE-2021-34999
was published
May 8, 2024
Adobe Bridge version 11.0.2 (and earlier) is affected by an uninitialized variable vulnerability...
Low
Unreviewed
CVE-2021-35991
was published
May 24, 2022
A flaw was found in the Linux kernel's implementation of Userspace core dumps. This flaw allows...
Low
Unreviewed
CVE-2020-10732
was published
May 24, 2022
In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB...
Low
Unreviewed
CVE-2019-19947
was published
May 24, 2022
Adobe Prelude version 10.0 (and earlier) are affected by an uninitialized variable vulnerability...
Low
Unreviewed
CVE-2021-36007
was published
May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource...
Low
Unreviewed
CVE-2021-36282
was published
May 24, 2022
An issue was discovered in romfs_dev_read in fs/romfs/storage.c in the Linux kernel before 5.8.4....
Low
Unreviewed
CVE-2020-29371
was published
May 24, 2022
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before...
Low
Unreviewed
CVE-2020-3964
was published
May 24, 2022
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to...
Low
Unreviewed
CVE-2020-12864
was published
May 24, 2022
An issue was discovered in slc_bump in drivers/net/can/slcan.c in the Linux kernel through 5.6.2....
Low
Unreviewed
CVE-2020-11494
was published
May 24, 2022
In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to...
Low
Unreviewed
CVE-2020-0007
was published
May 24, 2022
In the Linux kernel through 5.3.8, f->fmt.sdr.reserved is uninitialized in...
Low
Unreviewed
CVE-2019-18786
was published
May 24, 2022
In the Linux kernel before 5.2.9, there is an info-leak bug that can be caused by a malicious USB...
Low
Unreviewed
CVE-2019-19535
was published
May 24, 2022
An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel...
Low
Unreviewed
CVE-2021-21781
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API