Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,824 advisories

Loading
The em_sysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the... Moderate Unreviewed
CVE-2015-0239 was published May 13, 2022
Privilege escalation in Replibit Backup Manager earlier than version 2017.08.04 allows attackers... Critical Unreviewed
CVE-2017-13707 was published May 13, 2022
OpenStack Identity Keystone Improper Privilege Management Moderate
CVE-2014-0204 was published for keystone (pip) May 13, 2022
The ec2tokens API in OpenStack Identity (Keystone) before Havana 2013.2.1 and Icehouse before... Moderate Unreviewed
CVE-2013-6391 was published May 13, 2022
OpenStack Identity Keystone is vulnerable to Block delegation escalation of privilege Moderate
CVE-2014-3476 was published for keystone (pip) May 13, 2022
The msm_ipc_router_bind_control_port function in net/ipc_router/ipc_router_core.c in the IPC... High Unreviewed
CVE-2016-2059 was published May 13, 2022
The Web IDL implementation in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4,... Critical Unreviewed
CVE-2014-1510 was published May 13, 2022
drivers/gpu/msm/kgsl.c in the MSM graphics driver (aka GPU driver) for the Linux kernel 3.x, as... High Unreviewed
CVE-2016-2067 was published May 13, 2022
Integer signedness error in the MSM V4L2 video driver for the Linux kernel 3.x, as used in... High Unreviewed
CVE-2016-2061 was published May 13, 2022
Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey... Critical Unreviewed
CVE-2014-1511 was published May 13, 2022
Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey... Moderate Unreviewed
CVE-2014-1496 was published May 13, 2022
The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5,... High Unreviewed
CVE-2014-1529 was published May 13, 2022
Integer signedness error in the MSM QDSP6 audio driver for the Linux kernel 3.x, as used in... High Unreviewed
CVE-2016-2066 was published May 13, 2022
The aufs module for the Linux kernel 3.x and 4.x does not properly maintain POSIX ACL xattr data,... High Unreviewed
CVE-2016-2854 was published May 13, 2022
The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu... High Unreviewed
CVE-2014-3689 was published May 13, 2022
The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x... High Unreviewed
CVE-2012-3993 was published May 13, 2022
The IA32 system call emulation functionality in arch/x86/ia32/ia32entry.S in the Linux kernel... High Unreviewed
CVE-2010-3301 was published May 13, 2022
The ACPI subsystem in the Linux kernel before 2.6.36.2 uses 0222 permissions for the debugfs... Moderate Unreviewed
CVE-2010-4347 was published May 13, 2022
The do_exit function in kernel/exit.c in the Linux kernel before 2.6.36.2 does not properly... Moderate Unreviewed
CVE-2010-4258 was published May 13, 2022
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows... Moderate Unreviewed
CVE-2014-1526 was published May 13, 2022
The do_remount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain... High Unreviewed
CVE-2014-5206 was published May 13, 2022
The PPPoL2TP feature in net/l2tp/l2tp_ppp.c in the Linux kernel through 3.15.6 allows local users... Moderate Unreviewed
CVE-2014-4943 was published May 13, 2022
arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not... High Unreviewed
CVE-2014-3534 was published May 13, 2022
fs/namespace.c in the Linux kernel through 3.16.1 does not properly restrict clearing MNT_NODEV,... Moderate Unreviewed
CVE-2014-5207 was published May 13, 2022
arch/x86/kernel/entry_64.S in the Linux kernel before 3.17.5 does not properly handle faults... High Unreviewed
CVE-2014-9322 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database