Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

371 advisories

Loading
The ssl3_get_client_key_exchange function in s3_srvr.c in OpenSSL 1.0.2 before 1.0.2a, when... Low Unreviewed
CVE-2015-1787 was published May 14, 2022
fs/jfs/xattr.c in the Linux kernel before 2.6.35.2 does not properly handle a certain legacy... Low Unreviewed
CVE-2010-2946 was published May 14, 2022
The _dbus_printf_string_upper_bound function in dbus/dbus-sysdeps-unix.c in D-Bus (aka DBus) 1.4... Low Unreviewed
CVE-2013-2168 was published May 14, 2022
dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service ... Low Unreviewed
CVE-2014-3533 was published May 14, 2022
The "insert-blank-characters" capability in caps.c in gnome-terminal (vte) before 0.28.1 allows... Low Unreviewed
CVE-2011-2198 was published May 14, 2022
The dissect_stun_message function in epan/dissectors/packet-stun.c in the STUN dissector in... Low Unreviewed
CVE-2012-4292 was published May 14, 2022
Jenkins affected by Open Redirect Vulnerability Low
CVE-2012-6073 was published for org.jenkins-ci.main:jenkins-core (Maven) May 14, 2022
The ARM image loading functionality in Xen 4.4.x does not properly validate kernel length, which... Low Unreviewed
CVE-2014-3714 was published May 14, 2022
Xen 4.4.x does not properly check alignment, which allows local users to cause a denial of... Low Unreviewed
CVE-2014-3716 was published May 14, 2022
Xen 4.4.x does not properly validate the load address for 64-bit ARM guest kernels, which allows... Low Unreviewed
CVE-2014-3717 was published May 14, 2022
The check_mtab function in client/mount.cifs.c in mount.cifs in smbfs in Samba 3.5.10 and earlier... Low Unreviewed
CVE-2011-2724 was published May 14, 2022
Outlook Web App (OWA) in Microsoft Exchange Server 2013 SP1 and Cumulative Update 6 does not... Low Unreviewed
CVE-2014-6336 was published May 14, 2022
Jenkins Resource Disposer Plugin allows attacker to stop tracking specified resource Low
CVE-2018-1999037 was published for org.jenkins-ci.plugins:resource-disposer (Maven) May 14, 2022
The sys_recvfrom function in nmbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x... Low Unreviewed
CVE-2014-0244 was published May 14, 2022
Incomplete blacklist vulnerability in the chfn function in libuser before 0.56.13-8 and 0.60... Low Unreviewed
CVE-2015-3245 was published May 14, 2022
The PyGrub boot loader in Xen unstable before changeset 25589:60f09d1ab1fe, 4.2.x, and 4.1.x... Low Unreviewed
CVE-2012-2625 was published May 14, 2022
A remote HTTP parameter Pollution vulnerability in HPE Matrix Operating Environment version 7.6... Low Unreviewed
CVE-2016-8535 was published May 14, 2022
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10,... Low Unreviewed
CVE-2017-17292 was published May 14, 2022
The cleanup_journal_tail function in the Journaling Block Device (JBD) functionality in the Linux... Low Unreviewed
CVE-2011-4132 was published May 14, 2022
The Bluetooth subsystem in Apple OS X before 10.10.5 allows remote attackers to cause a denial of... Low Unreviewed
CVE-2015-3787 was published May 17, 2022
The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows... Low Unreviewed
CVE-2014-0476 was published May 17, 2022
The dissect_pw_eth_heuristic function in epan/dissectors/packet-pw-eth.c in Wireshark 1.6.x... Low Unreviewed
CVE-2013-1578 was published May 17, 2022
The dissect_sip_p_charging_func_addresses function in epan/dissectors/packet-sip.c in the SIP... Low Unreviewed
CVE-2013-1577 was published May 17, 2022
The dissect_pft_fec_detailed function in epan/dissectors/packet-dcp-etsi.c in the DCP-ETSI... Low Unreviewed
CVE-2013-1581 was published May 17, 2022
The dissect_version_5_and_6_primary_header function in epan/dissectors/packet-dtn.c in the DTN... Low Unreviewed
CVE-2013-1584 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database