Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

340 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: ice: fix locking for Tx... High Unreviewed
CVE-2021-47449 was published May 22, 2024
Open Networking Foundation SD-RAN Rimedo rimedo-ts 0.1.1 has a slice bounds out-of-range panic in... High Unreviewed
CVE-2024-34050 was published Apr 30, 2024
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability... Critical Unreviewed
CVE-2024-31581 was published Apr 17, 2024
CWE-129: Improper Validation of Array Index vulnerability exists that could cause local denial-of... High Unreviewed
CVE-2024-5680 was published Jul 11, 2024
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Use variable... Critical Unreviewed
CVE-2024-38623 was published Jun 21, 2024
In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/memhp: Fix... High Unreviewed
CVE-2023-52451 was published Feb 22, 2024
BlueZ Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability.... High Unreviewed
CVE-2023-27349 was published May 3, 2024
golang.org/x/net/html Improper Validation of Array Index vulnerability High
CVE-2018-17848 was published for golang.org/x/net (Go) May 13, 2022
Go Ethereum LES protocol implementation vulnerable to Denial of Service High
CVE-2018-12018 was published for github.com/ethereum/go-ethereum (Go) May 14, 2022
dhowden tag panic due to out-of-bounds read Moderate
CVE-2020-29244 was published for github.com/dhowden/tag (Go) May 24, 2022
dhowden tag panic due to out-of-bounds read Moderate
CVE-2020-29243 was published for github.com/dhowden/tag (Go) May 24, 2022
Denial of Service in dhowden/tag Moderate
CVE-2020-29242 was published for github.com/dhowden/tag (Go) Feb 7, 2023
RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution... High Unreviewed
CVE-2023-40477 was published May 3, 2024
Array size is not checked in sized-chunks High
CVE-2020-25792 was published for sized-chunks (Rust) Aug 25, 2021
tdunlap607
Memory corruption in WLAN HAL while handling command streams through WMI interfaces. High Unreviewed
CVE-2023-28565 was published Sep 5, 2023
Memory corruption in WLAN HAL while handling command through WMI interfaces. High Unreviewed
CVE-2023-28567 was published Sep 5, 2023
Memory corruption in WLAN HAL while parsing WMI command parameters. High Unreviewed
CVE-2023-28573 was published Sep 5, 2023
Memory corruption in Automotive Android OS due to improper validation of array index. High Unreviewed
CVE-2022-40539 was published Mar 10, 2023
Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta... High Unreviewed
CVE-2023-35996 was published Jan 8, 2024
Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta... High Unreviewed
CVE-2023-35995 was published Jan 8, 2024
Memory corruption in WLAN handler while processing PhyID in Tx status handler. High Unreviewed
CVE-2023-28558 was published Sep 5, 2023
Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length. High Unreviewed
CVE-2023-21650 was published Aug 8, 2023
In the Linux kernel, the following vulnerability has been resolved: thermal/drivers... Moderate Unreviewed
CVE-2020-36776 was published Feb 27, 2024
Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in... Moderate Unreviewed
CVE-2023-33111 was published Apr 1, 2024
Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART. High Unreviewed
CVE-2023-28548 was published Sep 5, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database