Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

625 advisories

Loading
Mattermost Server doesn't limit the number of user preferences Moderate
CVE-2024-28949 was published for github.com/mattermost/mattermost/server/v8 (Go) Apr 5, 2024
IBM WebSphere Application Server Liberty 18.0.0.2 through 24.0.0.3 is vulnerable to a denial of... Moderate Unreviewed
CVE-2024-27268 was published Apr 4, 2024
In the Linux kernel, the following vulnerability has been resolved: fbcon: always restore the... Moderate Unreviewed
CVE-2024-26798 was published Apr 4, 2024
In the Linux kernel, the following vulnerability has been resolved: dccp/tcp: Unhash sk from... Moderate Unreviewed
CVE-2024-26741 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: RDMA/qedr: Fix... Moderate Unreviewed
CVE-2024-26743 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: powerpc/kasan: Limit KASAN... Moderate Unreviewed
CVE-2024-26710 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: net: hsr: remove WARN_ONCE()... Moderate Unreviewed
CVE-2024-26707 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: ppp_async: limit MRU to 64K ... Moderate Unreviewed
CVE-2024-26675 was published Apr 2, 2024
IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.3 is vulnerable to a denial of... Moderate Unreviewed
CVE-2024-22353 was published Mar 31, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions... Moderate Unreviewed
CVE-2024-2818 was published Mar 28, 2024
A security vulnerability in HPE IceWall Agent products could be exploited remotely to cause a... Moderate Unreviewed
CVE-2024-22436 was published Mar 26, 2024
In the Linux kernel, the following vulnerability has been resolved: thermal: intel: hfi: Add... Moderate Unreviewed
CVE-2024-26646 was published Mar 26, 2024
In the Linux kernel, the following vulnerability has been resolved: ext4: avoid online resizing... Moderate Unreviewed
CVE-2023-52622 was published Mar 26, 2024
Netty's HttpPostRequestDecoder can OOM Moderate
CVE-2024-29025 was published for io.netty:netty-codec-http (Maven) Mar 25, 2024
vietj
Credited to vietj
In the Linux kernel, the following vulnerability has been resolved: USB: usbfs: Don't WARN about... Moderate Unreviewed
CVE-2021-47170 was published Mar 25, 2024
In the Linux kernel, the following vulnerability has been resolved: nvmet: fix freeing... Moderate Unreviewed
CVE-2021-47130 was published Mar 15, 2024
Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before... Moderate Unreviewed
CVE-2024-2446 was published Mar 15, 2024
In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Always exit... Moderate Unreviewed
CVE-2024-26618 was published Mar 11, 2024
JWCrypto vulnerable to JWT bomb Attack in `deserialize` function Moderate
CVE-2024-28102 was published for jwcrypto (pip) Mar 6, 2024
P3ngu1nW
Credited to P3ngu1nW
In the Linux kernel, the following vulnerability has been resolved: powerpc/lib: Validate size... Moderate Unreviewed
CVE-2023-52606 was published Mar 6, 2024
When parsing a multipart form (either explicitly with Request.ParseMultipartForm or implicitly... Moderate Unreviewed
CVE-2023-45290 was published Mar 6, 2024
In the Linux kernel, the following vulnerability has been resolved: HID: sony: Fix a potential... Moderate Unreviewed
CVE-2023-52529 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_codec: Fix... Moderate Unreviewed
CVE-2023-52518 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: crypto: sun8i-ss - Fix... Moderate Unreviewed
CVE-2021-47057 was published Mar 1, 2024
Mattermost fails to limit the number of role names Moderate
CVE-2024-1953 was published for github.com/mattermost/mattermost/server/v8 (Go) Feb 29, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database