GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
150 advisories
Filter by severity
A vulnerability was found in btrfs_alloc_tree_b in fs/btrfs/extent-tree.c in the Linux kernel due...
Moderate
Unreviewed
CVE-2021-4149
was published
Mar 24, 2022
In sched driver, there is a possible use after free due to improper locking. This could lead to...
Moderate
Unreviewed
CVE-2022-21775
was published
Jul 7, 2022
A locking protection bypass flaw was found in some versions of gnome-shell as shipped within...
Moderate
Unreviewed
CVE-2021-20315
was published
Feb 19, 2022
A vulnerability in the Remote Package Manager (RPM) subsystem of Cisco NX-OS Software could allow...
Moderate
Unreviewed
CVE-2019-1732
was published
May 24, 2022
In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may...
Moderate
Unreviewed
CVE-2019-14763
was published
May 24, 2022
An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of...
Moderate
Unreviewed
CVE-2019-17343
was published
May 24, 2022
An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md...
Moderate
Unreviewed
CVE-2020-12771
was published
May 24, 2022
This issue was addressed with improved checks. This issue is fixed in iOS 14.0 and iPadOS 14.0,...
Moderate
Unreviewed
CVE-2020-9946
was published
May 24, 2022
In priorLinearAllocation of C2AllocatorIon.cpp, there is a possible use-after-free due to...
Moderate
Unreviewed
CVE-2020-27035
was published
May 24, 2022
An issue was discovered in fs/io_uring.c in the Linux kernel through 5.11.8. It allows attackers...
Moderate
Unreviewed
CVE-2021-28951
was published
May 24, 2022
btrfs in the Linux kernel before 5.13.4 allows attackers to cause a denial of service (deadlock)...
Moderate
Unreviewed
CVE-2021-38203
was published
May 24, 2022
The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly...
Moderate
Unreviewed
CVE-2021-31611
was published
May 24, 2022
The Bluetooth Classic implementation on Actions ATS2815 and ATS2819 chipsets does not properly...
Moderate
Unreviewed
CVE-2021-31785
was published
May 24, 2022
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it...
Moderate
Unreviewed
CVE-2021-1123
was published
May 24, 2022
Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to...
Moderate
Unreviewed
CVE-2022-42329
was published
Dec 7, 2022
Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to...
Moderate
Unreviewed
CVE-2022-42328
was published
Dec 7, 2022
A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an...
Moderate
Unreviewed
CVE-2018-0381
was published
May 13, 2022
In camera driver, there is a possible memory corruption due to improper locking. This could lead...
Moderate
Unreviewed
CVE-2022-39131
was published
Dec 6, 2022
In mon_smc_load_sp of gs101-sc/plat/samsung/exynos/soc/exynos9845/smc_booting.S, there is a...
Moderate
Unreviewed
CVE-2021-39647
was published
Dec 16, 2021
In camera driver, there is a possible memory corruption due to improper locking. This could lead...
Moderate
Unreviewed
CVE-2022-42775
was published
Dec 6, 2022
In vow driver, there is a possible memory corruption due to improper locking. This could lead to...
Moderate
Unreviewed
CVE-2022-20016
was published
Jan 5, 2022
A race condition in perf_event_open() allows local attackers to leak sensitive data from setuid...
Moderate
Unreviewed
CVE-2019-3901
was published
May 24, 2022
In vcu, there is a possible memory corruption due to improper locking. This could lead to local...
Moderate
Unreviewed
CVE-2023-20619
was published
Feb 6, 2023
In vcu, there is a possible memory corruption due to improper locking. This could lead to local...
Moderate
Unreviewed
CVE-2023-20618
was published
Feb 6, 2023
A flaw was found in the Linux kernel's Layer 2 Tunneling Protocol (L2TP). A missing lock when...
Moderate
Unreviewed
CVE-2022-4129
was published
Nov 29, 2022
ProTip!
Advisories are also available from the
GraphQL API