Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

213 advisories

Loading
In mon_smc_load_sp of gs101-sc/plat/samsung/exynos/soc/exynos9845/smc_booting.S, there is a... Moderate Unreviewed
CVE-2021-39647 was published Dec 16, 2021
In vow driver, there is a possible memory corruption due to improper locking. This could lead to... Moderate Unreviewed
CVE-2022-20016 was published Jan 5, 2022
An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series and... High Unreviewed
CVE-2022-22175 was published Jan 20, 2022
A locking protection bypass flaw was found in some versions of gnome-shell as shipped within... Moderate Unreviewed
CVE-2021-20315 was published Feb 19, 2022
An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It... Moderate Unreviewed
CVE-2021-3667 was published Mar 4, 2022
A vulnerability was found in btrfs_alloc_tree_b in fs/btrfs/extent-tree.c in the Linux kernel due... Moderate Unreviewed
CVE-2021-4149 was published Mar 24, 2022
A flaw was found in the libvirt nwfilter driver. The virNWFilterObjListNumOfNWFilters method... Moderate Unreviewed
CVE-2022-0897 was published Mar 26, 2022
A flaw was found in the libvirt libxl driver. A malicious guest could continuously reboot itself... Moderate Unreviewed
CVE-2021-4147 was published Mar 26, 2022
Racy interactions between dirty vram tracking and paging log dirty hypercalls Activation of log... Moderate Unreviewed
CVE-2022-26356 was published Apr 6, 2022
A Denial of Service vulnerability exists in CORTX-S3 Server as of 11/7/2021 via the... High Unreviewed
CVE-2021-43429 was published Apr 8, 2022
Apache 1.4.x before 1.3.30, and 2.0.x before 2.0.49, when using multiple listening sockets on... Moderate Unreviewed
CVE-2004-0174 was published Apr 29, 2022
Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which... Moderate Unreviewed
CVE-2000-0338 was published Apr 30, 2022
qpopper POP server creates lock files with predictable names, which allows local users to cause a... Low Unreviewed
CVE-2000-1198 was published Apr 30, 2022
ZoneAlarm and ZoneAlarm Pro allows a local attacker to cause a denial of service by running a... Low Unreviewed
CVE-2001-0682 was published Apr 30, 2022
Windows 2000 allows local users to prevent the application of new group policy settings by... Moderate Unreviewed
CVE-2002-0051 was published Apr 30, 2022
mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and possibly remote attackers to cause a... Moderate Unreviewed
CVE-2002-1850 was published Apr 30, 2022
Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log... Low Unreviewed
CVE-2002-1869 was published Apr 30, 2022
tip on multiple BSD-based operating systems allows local users to cause a denial of service ... Low Unreviewed
CVE-2002-1915 was published Apr 30, 2022
dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention)... Low Unreviewed
CVE-2002-1914 was published Apr 30, 2022
Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6... Low Unreviewed
CVE-2005-2456 was published May 1, 2022
Race condition in Linux 2.6, when threads are sharing memory mapping via CLONE_VM (such as... Low Unreviewed
CVE-2005-3106 was published May 1, 2022
The handle_stop_signal function in signal.c in Linux kernel 2.6.11 up to other versions before 2... Moderate Unreviewed
CVE-2005-3847 was published May 1, 2022
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (deadlock)... Moderate Unreviewed
CVE-2006-2275 was published May 1, 2022
The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2,... Low Unreviewed
CVE-2006-2374 was published May 1, 2022
The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to... Moderate Unreviewed
CVE-2006-4342 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database