Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,081
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+

40 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: net: libwx: properly reset... Moderate Unreviewed
CVE-2025-38532 was published Aug 16, 2025
In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix abort all... Moderate Unreviewed
CVE-2022-49217 was published Oct 21, 2025
In the Linux kernel, the following vulnerability has been resolved: thermal: testing: Initialize... Moderate Unreviewed
CVE-2024-56676 was published Dec 28, 2024
Moby firewalld reload makes published container ports accessible from remote hosts Moderate
CVE-2025-54388 was published for github.com/docker/docker (Go) Jul 29, 2025
ospf_te_parse_te in ospfd/ospf_te.c in FRRouting (FRR) through 9.1 allows remote attackers to... Moderate Unreviewed
CVE-2024-27913 was published Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved: llc: Drop support for... Moderate Unreviewed
CVE-2024-26635 was published Mar 18, 2024
In the Linux kernel, the following vulnerability has been resolved: vt: prevent kernel-infoleak... Moderate Unreviewed
CVE-2024-50076 was published Oct 29, 2024
Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault... Moderate Unreviewed
CVE-2023-5138 was published Jan 4, 2024
In Eclipse Openj9 to version 0.25.0, usage of the jdk.internal.reflect.ConstantPool API causes... Moderate Unreviewed
CVE-2021-28167 was published May 24, 2022
In libavc, there is a missing variable initialization. This could lead to remote information... Moderate Unreviewed
CVE-2019-9320 was published May 24, 2022
In libavc, there is a missing variable initialization. This could lead to remote information... Moderate Unreviewed
CVE-2019-9321 was published May 24, 2022
In libhevc, there is a missing variable initialization. This could lead to remote information... Moderate Unreviewed
CVE-2019-9318 was published May 24, 2022
In libstagefright, there is a missing variable initialization. This could lead to remote... Moderate Unreviewed
CVE-2019-9316 was published May 24, 2022
In libhevc, there is a missing variable initialization. This could lead to remote information... Moderate Unreviewed
CVE-2019-9315 was published May 24, 2022
In libstagefright, there is a missing variable initialization. This could lead to remote... Moderate Unreviewed
CVE-2019-9313 was published May 24, 2022
In libavc, there is a missing variable initialization. This could lead to remote information... Moderate Unreviewed
CVE-2019-9314 was published May 24, 2022
In AAC Codec, there is a missing variable initialization. This could lead to remote information... Moderate Unreviewed
CVE-2019-9247 was published May 24, 2022
net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive... Moderate Unreviewed
CVE-2021-34693 was published May 24, 2022
im_vips2dz in /libvips/libvips/deprecated/im_vips2dz.c in libvips before 8.8.2 has an... Moderate Unreviewed
CVE-2020-20739 was published May 24, 2022
In ipSecSetEncapSocketOwner of XfrmController.cpp, there is a possible failure to initialize a... Moderate Unreviewed
CVE-2018-9511 was published May 13, 2022
A denial of service vulnerability in the Android media framework (h264 decoder). Product: Android... Moderate Unreviewed
CVE-2017-0730 was published May 13, 2022
In quota_proc_write of xt_quota2.c, there is a possible way to read kernel memory due to... Moderate Unreviewed
CVE-2021-0961 was published Dec 16, 2021
In writeToParcel of SurfaceControl.cpp, there is a possible information disclosure due to... Moderate Unreviewed
CVE-2022-20357 was published Aug 11, 2022
A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly... Moderate Unreviewed
CVE-2022-0175 was published Aug 27, 2022
In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to... Moderate Unreviewed
CVE-2019-16714 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database