Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

361 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Do not... Moderate Unreviewed
CVE-2024-39478 was published Jul 5, 2024
In the Linux kernel, the following vulnerability has been resolved: mmc: davinci: Don't strip... Moderate Unreviewed
CVE-2024-39484 was published Jul 5, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix overrunning... Moderate Unreviewed
CVE-2024-41009 was published Jul 17, 2024
In the Linux kernel, the following vulnerability has been resolved: xdp: Remove WARN() from... Moderate Unreviewed
CVE-2024-42082 was published Jul 29, 2024
An issue the background management system of Shanxi Internet Chuangxiang Technology Co., Ltd v1.0... Moderate Unreviewed
CVE-2024-37681 was published Jun 24, 2024
Authenticated users can crash the CubeFS servers with maliciously crafted requests Moderate
CVE-2023-46738 was published for github.com/cubefs/cubefs (Go) Jan 3, 2024
AdamKorcz
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).... Moderate Unreviewed
CVE-2024-39876 was published Jul 9, 2024
In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci: Fix max_seg_size... Moderate Unreviewed
CVE-2024-42242 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: wireguard: allowedips: avoid... Moderate Unreviewed
CVE-2024-42247 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/shmem: disable PMD-sized... Moderate Unreviewed
CVE-2024-42241 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: mm: huge_memory: use ... Moderate Unreviewed
CVE-2024-42258 was published Aug 12, 2024
When performing an online tag generation to devices which communicate using the ControlLogix... Moderate Unreviewed
CVE-2024-6098 was published Aug 16, 2024
In the Linux kernel, the following vulnerability has been resolved: xfs: fix log recovery buffer... Moderate Unreviewed
CVE-2024-39472 was published Jul 5, 2024
Spring Framework vulnerable to Denial of Service Moderate
CVE-2024-38808 was published for org.springframework:spring-expression (Maven) Aug 20, 2024
IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS, and 9.3 CD is vulnerable to a denial of service attack... Moderate Unreviewed
CVE-2024-35116 was published Jun 29, 2024
In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in... Moderate Unreviewed
CVE-2024-43856 was published Aug 17, 2024
Allocation of Resources Without Limits or Throttling in metadata-extractor Moderate
CVE-2022-24614 was published for com.drewnoakes:metadata-extractor (Maven) Feb 25, 2022
cpropps-sysdig
The IPC-Diagnostics package included in TwinCAT/BSD is vulnerable to a local denial-of-service... Moderate Unreviewed
CVE-2024-41175 was published Aug 27, 2024
Denial of service condition in M-Files Server in versions before 24.2 (excluding 23.2 SR7 and 23... Moderate Unreviewed
CVE-2024-0563 was published Feb 23, 2024
Apache Commons Compress: OutOfMemoryError unpacking broken Pack200 file Moderate
CVE-2024-26308 was published for org.apache.commons:commons-compress (Maven) Feb 19, 2024
oscerd astashys
User-controlled operations could have allowed Denial of Service in M-Files Server before 23.4... Moderate Unreviewed
CVE-2023-0382 was published Apr 5, 2023
A possibility of unwanted server memory consumption was detected through the obsolete... Moderate Unreviewed
CVE-2023-6117 was published Nov 22, 2023
A vulnerable API method in M-Files Server before 23.12.13195.0 allows for uncontrolled resource... Moderate Unreviewed
CVE-2023-6910 was published Dec 20, 2023
RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of... Moderate Unreviewed
CVE-2023-5371 was published Oct 4, 2023
priority vulnerable to denial of service Moderate
CVE-2016-6580 was published for priority (pip) May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database