Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,218
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,333
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

222 advisories

Loading
Improper Locking in Apache Tomcat High
CVE-2019-10072 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jun 26, 2019
sunSUNQ
Improper Locking in github.com/containers/storage Moderate
CVE-2021-20291 was published for github.com/containers/storage (Go) May 10, 2021
Data race in va-ts Moderate
CVE-2020-36220 was published for va-ts (Rust) Aug 25, 2021
Deadlock in mutually recursive `tf.function` objects Moderate
CVE-2021-41213 was published for tensorflow (pip) Nov 10, 2021
In mon_smc_load_sp of gs101-sc/plat/samsung/exynos/soc/exynos9845/smc_booting.S, there is a... Moderate Unreviewed
CVE-2021-39647 was published Dec 16, 2021
In vow driver, there is a possible memory corruption due to improper locking. This could lead to... Moderate Unreviewed
CVE-2022-20016 was published Jan 5, 2022
An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series and... High Unreviewed
CVE-2022-22175 was published Jan 20, 2022
Denial of Service in Gitea High
CVE-2020-13246 was published for github.com/go-gitea/gitea (Go) Feb 15, 2022
A locking protection bypass flaw was found in some versions of gnome-shell as shipped within... Moderate Unreviewed
CVE-2021-20315 was published Feb 19, 2022
Improper Locking in JetBrains Kotlin Moderate
CVE-2022-24329 was published for org.jetbrains.kotlin:kotlin-stdlib (Maven) Feb 26, 2022
An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It... Moderate Unreviewed
CVE-2021-3667 was published Mar 4, 2022
A vulnerability was found in btrfs_alloc_tree_b in fs/btrfs/extent-tree.c in the Linux kernel due... Moderate Unreviewed
CVE-2021-4149 was published Mar 24, 2022
A flaw was found in the libvirt nwfilter driver. The virNWFilterObjListNumOfNWFilters method... Moderate Unreviewed
CVE-2022-0897 was published Mar 26, 2022
A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself... Moderate Unreviewed
CVE-2021-4147 was published Mar 26, 2022
Racy interactions between dirty vram tracking and paging log dirty hypercalls Activation of log... Moderate Unreviewed
CVE-2022-26356 was published Apr 6, 2022
A Denial of Service vulnerability exists in CORTX-S3 Server as of 11/7/2021 via the... High Unreviewed
CVE-2021-43429 was published Apr 8, 2022
Apache 1.4.x before 1.3.30, and 2.0.x before 2.0.49, when using multiple listening sockets on... Moderate Unreviewed
CVE-2004-0174 was published Apr 29, 2022
Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which... Moderate Unreviewed
CVE-2000-0338 was published Apr 30, 2022
qpopper POP server creates lock files with predictable names, which allows local users to cause a... Low Unreviewed
CVE-2000-1198 was published Apr 30, 2022
ZoneAlarm and ZoneAlarm Pro allows a local attacker to cause a denial of service by running a... Low Unreviewed
CVE-2001-0682 was published Apr 30, 2022
Windows 2000 allows local users to prevent the application of new group policy settings by... Moderate Unreviewed
CVE-2002-0051 was published Apr 30, 2022
mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and possibly remote attackers to cause a... Moderate Unreviewed
CVE-2002-1850 was published Apr 30, 2022
Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log... Low Unreviewed
CVE-2002-1869 was published Apr 30, 2022
tip on multiple BSD-based operating systems allows local users to cause a denial of service ... Low Unreviewed
CVE-2002-1915 was published Apr 30, 2022
dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention)... Low Unreviewed
CVE-2002-1914 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database