GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,091 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Git through 2.14.2 mishandles layers of tree objects, which allows remote attackers to cause a... Moderate Unreviewed

CVE-2017-15298 was published May 13, 2022

The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS before 15.0(1... High Unreviewed

CVE-2010-4671 was published May 13, 2022

CallManager Express (CME) on Cisco IOS before 15.0(1)XA1 does not properly handle SIP TRUNK... High Unreviewed

CVE-2010-4686 was published May 13, 2022

The ehci_advance_state function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators... Moderate Unreviewed

CVE-2016-4037 was published May 13, 2022

Google Chrome before 9.0.597.94 does not properly perform process termination upon memory... High Unreviewed

CVE-2011-0985 was published May 13, 2022

An error when processing the EXIF_IFD_INTEROPERABILITY and EXIF_IFD_EXIF tags within libexif... High Unreviewed

CVE-2018-20030 was published May 13, 2022

Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion... High Unreviewed

CVE-2016-6171 was published May 13, 2022

NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting... High Unreviewed

CVE-2016-7426 was published May 13, 2022

A vulnerability in the Layer 2 Tunneling Protocol (L2TP) parsing function of Cisco IOS (12.0... High Unreviewed

CVE-2017-3857 was published May 13, 2022

** DISPUTED ** Integer signedness error in the pmcraid_ioctl_passthrough function in drivers/scsi... Moderate Unreviewed

CVE-2011-2906 was published May 13, 2022

The I/O implementation for block devices in the Linux kernel before 2.6.33 does not properly... Moderate Unreviewed

CVE-2012-0879 was published May 13, 2022

The Performance Events subsystem in the Linux kernel before 3.1 does not properly handle event... Moderate Unreviewed

CVE-2011-2918 was published May 13, 2022

Internet Initiative Japan Inc. SEIL Series routers SEIL/X1 2.50 through 4.62, SEIL/X2 2.50... High Unreviewed

CVE-2014-7255 was published May 13, 2022

The gfs2_fallocate function in fs/gfs2/file.c in the Linux kernel before 3.0-rc1 does not ensure... Moderate Unreviewed

CVE-2011-2689 was published May 13, 2022

The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the... Moderate Unreviewed

CVE-2011-2491 was published May 13, 2022

The TCP stack in the Linux kernel 3.x does not properly implement a SYN cookie protection... High Unreviewed

CVE-2017-5972 was published May 13, 2022

The tcp_read_sock function in net/ipv4/tcp.c in the Linux kernel before 2.6.34 does not properly... Moderate Unreviewed

CVE-2013-2128 was published May 13, 2022

The socket implementation in net/core/sock.c in the Linux kernel before 2.6.34 does not properly... High Unreviewed

CVE-2010-4251 was published May 13, 2022

The socket implementation in net/core/sock.c in the Linux kernel before 2.6.35 does not properly... High Unreviewed

CVE-2010-4805 was published May 13, 2022

The ethernet-lldp component in Cisco IOS 12.2 before 12.2(33)SXJ1 does not properly support a... High Unreviewed

CVE-2011-1640 was published May 13, 2022

fs/eventpoll.c in the Linux kernel before 2.6.38 places epoll file descriptors within other epoll... Moderate Unreviewed

CVE-2011-1082 was published May 13, 2022

The sctp_auth_asoc_get_hmac function in net/sctp/auth.c in the Linux kernel before 2.6.36 does... High Unreviewed

CVE-2010-3705 was published May 13, 2022

mm/huge_memory.c in the Linux kernel before 2.6.38-rc5 does not prevent creation of a transparent... Moderate Unreviewed

CVE-2011-0999 was published May 13, 2022

The epoll implementation in the Linux kernel 2.6.37.2 and earlier does not properly traverse a... Moderate Unreviewed

CVE-2011-1083 was published May 13, 2022

fs/exec.c in the Linux kernel before 2.6.37 does not enable the OOM Killer to assess use of stack... Moderate Unreviewed

CVE-2010-4243 was published May 13, 2022

Previous 1…74…84 Next

Previous 1 2 … 72 73 74 75 76 … 83 84 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,091 advisories