Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,639 advisories

Loading
** DISPUTED ** The Linux kernel through 5.0.7, when CONFIG_IA32_AOUT is enabled and ia32_aout is... Low Unreviewed
CVE-2019-11191 was published May 14, 2022
The MCollective aes_security plugin, as used in Puppet Enterprise before 3.3.0 and Mcollective... Moderate Unreviewed
CVE-2014-3251 was published May 14, 2022
Race condition in Puppet Server 0.2.0 allows local users to obtain sensitive information by... Low Unreviewed
CVE-2014-7170 was published May 14, 2022
Debian tmpreaper version 1.6.13+nmu1 has a race condition when doing a (bind) mount via rename()... High Unreviewed
CVE-2019-3461 was published May 14, 2022
A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read... High Unreviewed
CVE-2018-14625 was published May 14, 2022
In HTSlib 1.8, a race condition in cram/cram_io.c might allow local users to overwrite arbitrary... Moderate Unreviewed
CVE-2018-14329 was published May 13, 2022
A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software... High Unreviewed
CVE-2018-8897 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4167 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4156 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4154 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4158 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4155 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4157 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4166 was published May 13, 2022
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue... High Unreviewed
CVE-2018-4152 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4151 was published May 13, 2022
Gitolite before 3.6.9 does not (in certain configurations involving @all or a regex) properly... High Unreviewed
CVE-2018-16976 was published May 13, 2022
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-8279 was published May 13, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, when accessing... High Unreviewed
CVE-2017-8257 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10... High Unreviewed
CVE-2017-6979 was published May 13, 2022
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE 3.16... Moderate Unreviewed
CVE-2017-6615 was published May 13, 2022
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and... High Unreviewed
CVE-2017-6408 was published May 13, 2022
Race condition in the sctp_wait_for_sndbuf function in net/sctp/socket.c in the Linux kernel... High Unreviewed
CVE-2017-5986 was published May 13, 2022
It is possible to bypass the bitbucket auto-unapprove plugin via minimal brute-force because it... High Unreviewed
CVE-2017-16857 was published May 13, 2022
The vagrant update process in Hashicorp vagrant-vmware-fusion 5.0.2 through 5.0.4 allows local... High Unreviewed
CVE-2017-16512 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database