Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,639
Maven
5,000+
npm
4,265
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,815 advisories

Loading
A Speculative Race Condition (SRC) vulnerability that impacts modern CPU architectures supporting... Moderate Unreviewed
CVE-2024-2193 was published Mar 15, 2024
In the Linux kernel, the following vulnerability has been resolved: udp: fix race between close(... Moderate Unreviewed
CVE-2021-47248 was published May 21, 2024
A security vulnerability has been identified in HPE Cray Data Virtualization Service (DVS).... High Unreviewed
CVE-2025-37088 was published Apr 23, 2025
OpenPLC 3 through 64f9c11 has server.cpp Memory Corruption because a thread may access... High Unreviewed
CVE-2025-46613 was published Apr 25, 2025
A signal handler race condition was found in OpenSSH's server (sshd), where a client does not... High Unreviewed
CVE-2024-6387 was published Jul 1, 2024
In Cilium, packets from terminating endpoints may not be encrypted in Wireguard-enabled clusters Moderate
CVE-2025-32793 was published for github.com/cilium/cilium (Go) Apr 21, 2025
julianwiedmann
Credited to julianwiedmann
Smack allows the bypass of TLS protections Moderate
CVE-2016-10027 was published for org.igniterealtime.smack:smack-core (Maven) May 13, 2022
The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race... High Unreviewed
CVE-2017-17712 was published May 14, 2022
The setpermissions function in the auto-updater in Arq before 5.9.7 for Mac allows local users to... High Unreviewed
CVE-2017-15357 was published May 13, 2022
The Linux Kernel versions 2.6.38 through 4.14 have a problematic use of pmd_mkdirty() in the... High Unreviewed
CVE-2017-1000405 was published May 14, 2022
In HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.0, a local attacker or... High Unreviewed
CVE-2017-15884 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is... High Unreviewed
CVE-2017-7115 was published May 14, 2022
In HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.1, a local attacker or... High Unreviewed
CVE-2017-16001 was published May 13, 2022
Race condition in the ALSA subsystem in the Linux kernel before 4.13.8 allows local users to... High Unreviewed
CVE-2017-15265 was published May 13, 2022
The Microsoft Device Guard on Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server... High Unreviewed
CVE-2017-11823 was published May 13, 2022
Race condition in the v9fs_xattrwalk function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows... Moderate Unreviewed
CVE-2017-15038 was published May 14, 2022
In FreeBSD through 11.1, the smb_strdupin function in sys/netsmb/smb_subr.c has a race condition... High Unreviewed
CVE-2017-15037 was published May 17, 2022
Linux kernel: Exploitable memory corruption due to UFO to non-UFO path switch. When building a... High Unreviewed
CVE-2017-1000112 was published May 14, 2022
net/packet/af_packet.c in the Linux kernel before 4.13.6 allows local users to gain privileges... High Unreviewed
CVE-2017-15649 was published May 14, 2022
Race condition in Blizzard Overwatch 1.15.0.2 allows remote authenticated users to cause a denial... Moderate Unreviewed
CVE-2017-14748 was published May 17, 2022
A elevation of privilege vulnerability in the Upstream kernel scsi driver. Product: Android.... High Unreviewed
CVE-2017-0794 was published May 13, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition... High Unreviewed
CVE-2017-8267 was published May 17, 2022
Race condition in the fsnotify implementation in the Linux kernel through 4.12.4 allows local... High Unreviewed
CVE-2017-7533 was published May 14, 2022
Race condition in the ioctl implementation in the Samsung Graphics 2D driver (aka /dev/fimg2d) in... High Unreviewed
CVE-2015-7891 was published May 17, 2022
Race condition in the bindBackupAgent method in the ActivityManagerService in Android 4.4.4... High Unreviewed
CVE-2014-7953 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database