GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
155 advisories
Filter by severity
SMTP command injection in lettre
Critical
CVE-2021-38189
was published
for
lettre
(Rust)
Jul 12, 2021
OS command injection in ripgrep
Critical
CVE-2021-3013
was published
for
grep-cli
(Rust)
Aug 5, 2021
Memory corruption slice-deque
Critical
CVE-2018-20995
was published
for
slice-deque
(Rust)
Aug 25, 2021
Heap overflow or corruption in safe-transmute
Critical
CVE-2018-21000
was published
for
safe-transmute
(Rust)
Aug 25, 2021
Potential memory corruption in arrayfire
Critical
CVE-2018-20998
was published
for
arrayfire
(pip)
Aug 25, 2021
Memory corruption in smallvec
Critical
CVE-2019-15554
was published
for
smallvec
(Rust)
Aug 25, 2021
Out of bounds write in slice-deque
Critical
CVE-2019-15543
was published
for
slice-deque
(Rust)
Aug 25, 2021
Algorithms compute incorrect results in blake2
Critical
CVE-2019-16143
was published
for
blake2
(Rust)
Aug 25, 2021
Out of bounds access in compact_arena
Critical
CVE-2019-16139
was published
for
compact_arena
(Rust)
Aug 25, 2021
Improper Input Validation in renderdoc
Critical
CVE-2019-16142
was published
for
renderdoc
(Rust)
Aug 25, 2021
Access of Uninitialized Pointer in linked-hash-map
Critical
CVE-2020-25573
was published
for
linked-hash-map
(Rust)
Aug 25, 2021
Use after free in portaudio-rs
Critical
CVE-2019-16881
was published
for
portaudio-rs
(Rust)
Aug 25, 2021
Incorrect Comparison in sodiumoxide
Critical
CVE-2019-25002
was published
for
sodiumoxide
(Rust)
Aug 25, 2021
Out of bounds access in lucet-runtime-internals
Critical
CVE-2020-35859
was published
for
lucet-runtime-internals
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API