Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,796 advisories

Loading
In the Linux kernel through 4.19, a use-after-free can occur due to a race condition between... High Unreviewed
CVE-2018-18559 was published May 14, 2022
389-ds-base before versions 1.4.0.10, 1.3.8.3 is vulnerable to a race condition in the way 389-ds... High Unreviewed
CVE-2018-10850 was published May 14, 2022
Race condition in the Pragmatic General Multicast (PGM) protocol implementation in Microsoft... High Unreviewed
CVE-2015-6126 was published May 14, 2022
In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and 4.4.133, multiple race... High Unreviewed
CVE-2018-5814 was published May 14, 2022
The Linux kernel before 4.8 allows local users to bypass ASLR on setuid programs (such as /bin/su... Moderate Unreviewed
CVE-2019-11190 was published May 14, 2022
ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when... Moderate Unreviewed
CVE-2015-3196 was published May 14, 2022
** DISPUTED ** The Linux kernel through 5.0.7, when CONFIG_IA32_AOUT is enabled and ia32_aout is... Low Unreviewed
CVE-2019-11191 was published May 14, 2022
The MCollective aes_security plugin, as used in Puppet Enterprise before 3.3.0 and Mcollective... Moderate Unreviewed
CVE-2014-3251 was published May 14, 2022
Race condition in Puppet Server 0.2.0 allows local users to obtain sensitive information by... Low Unreviewed
CVE-2014-7170 was published May 14, 2022
Debian tmpreaper version 1.6.13+nmu1 has a race condition when doing a (bind) mount via rename()... High Unreviewed
CVE-2019-3461 was published May 14, 2022
A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read... High Unreviewed
CVE-2018-14625 was published May 14, 2022
In HTSlib 1.8, a race condition in cram/cram_io.c might allow local users to overwrite arbitrary... Moderate Unreviewed
CVE-2018-14329 was published May 13, 2022
A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software... High Unreviewed
CVE-2018-8897 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4167 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4154 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4158 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4156 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4155 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4157 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4166 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4151 was published May 13, 2022
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue... High Unreviewed
CVE-2018-4152 was published May 13, 2022
Gitolite before 3.6.9 does not (in certain configurations involving @all or a regex) properly... High Unreviewed
CVE-2018-16976 was published May 13, 2022
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-8279 was published May 13, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, when accessing... High Unreviewed
CVE-2017-8257 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database