Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,818 advisories

Loading
Metadata verification and partial hash system calls by bootloader may corrupt parallel hashing... High Unreviewed
CVE-2018-13909 was published May 24, 2022
Insufficient password protection in the attestation database for Open CIT may allow an... Low Unreviewed
CVE-2019-0178 was published May 24, 2022
In callGenIDChangeListeners and related functions of SkPixelRef.cpp, there is a possible use... High Unreviewed
CVE-2019-2095 was published May 24, 2022
There is a race condition vulnerability on Huawei Honor V10 smartphones versions earlier than... High Unreviewed
CVE-2019-5216 was published May 24, 2022
An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. daemon/gvfsbackendadmin.c has race... High Unreviewed
CVE-2019-12448 was published May 24, 2022
file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 does not properly restrict... Critical Unreviewed
CVE-2019-12450 was published May 24, 2022
It was discovered freeradius up to and including version 3.0.19 does not correctly configure... High Unreviewed
CVE-2019-10143 was published May 24, 2022
Data race in extensions guest view in Google Chrome prior to 73.0.3683.75 allowed a remote... High Unreviewed
CVE-2019-5796 was published May 24, 2022
In Docker through 18.06.1-ce-rc2, the API endpoints behind the 'docker cp' command are vulnerable... High Unreviewed
CVE-2018-15664 was published May 24, 2022
A race condition in Intel(R) Graphics Drivers before version 10.18.14.5067 (aka 15.36.x.5067) and... Moderate Unreviewed
CVE-2019-0114 was published May 24, 2022
An improper authentication vulnerability can be exploited through a race condition that occurs in... High Unreviewed
CVE-2019-8978 was published May 24, 2022
An issue was discovered in rds_tcp_kill_sock in net/rds/tcp.c in the Linux kernel before 5.0.8.... High Unreviewed
CVE-2019-11815 was published May 24, 2022
The groonga-httpd package 6.1.5-1 for Debian sets the /var/log/groonga ownership to the groonga... High Unreviewed
CVE-2019-11675 was published May 24, 2022
The Siemens R3964 line discipline driver in drivers/tty/n_r3964.c in the Linux kernel before 5.0... Moderate Unreviewed
CVE-2019-11486 was published May 24, 2022
LXD vulnerable to Race Condition High
CVE-2015-1340 was published for github.com/lxc/lxd (Go) May 24, 2022
A race condition vulnerability was reported in IMController, a software component of Lenovo... High Unreviewed
CVE-2021-3922 was published May 19, 2022
Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1... Moderate Unreviewed
CVE-2014-3509 was published May 17, 2022
The uv_rwlock_t fallback implementation for Windows XP and Server 2003 in libuv before 1.7.4 does... High Unreviewed
CVE-2014-9748 was published May 17, 2022
eDeploy has tmp file race condition flaws High Unreviewed
CVE-2014-3701 was published May 17, 2022
xcfa before 5.0.1 creates temporary files insecurely which could allow local users to launch a... Moderate Unreviewed
CVE-2014-5254 was published May 17, 2022
xcfa before 5.0.1 creates temporary files insecurely which could allow local users to launch a... High Unreviewed
CVE-2014-5255 was published May 17, 2022
win32k.sys in Microsoft Windows Server 2003 and Vista allows local users to cause a denial of... Moderate Unreviewed
CVE-2008-6819 was published May 17, 2022
mountall.c in mountall before 2.15.2 uses 0666 permissions for the root.rules file, which allows... Moderate Unreviewed
CVE-2010-2961 was published May 17, 2022
Concurrent Execution using Shared Resource with Improper Synchronization in pyftpdlib High
CVE-2010-3494 was published for pyftpdlib (pip) May 17, 2022
Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later allows physically proximate... Moderate Unreviewed
CVE-2010-4012 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database