Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,863 advisories

Loading
The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold and SP1,... Moderate Unreviewed
CVE-2009-2516 was published May 2, 2022
The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux kernel 2.6 before 2.6.30, when... Moderate Unreviewed
CVE-2009-2287 was published May 2, 2022
The multipart processor in ModSecurity before 2.5.9 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2009-1902 was published May 2, 2022
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize... Moderate Unreviewed
CVE-2009-0949 was published May 2, 2022
Skulltag before 0.97d2-RC6 allows remote attackers to cause a denial of service (NULL pointer... Moderate Unreviewed
CVE-2008-3597 was published May 2, 2022
The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local... High Unreviewed
CVE-2008-2812 was published May 1, 2022
OpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of service (crash) via a TLS... Moderate Unreviewed
CVE-2008-1672 was published May 1, 2022
The SILC_SERVER_CMD_FUNC function in apps/silcd/command.c in silc-server 1.0.2 allows remote... High Unreviewed
CVE-2007-1327 was published May 1, 2022
axigen 1.2.6 through 2.0.0b1 does not properly parse login credentials, which allows remote... High Unreviewed
CVE-2007-0887 was published May 1, 2022
WebCore in Apple WebKit build 18794 allows remote attackers to cause a denial of service (null... Moderate Unreviewed
CVE-2007-0342 was published May 1, 2022
The Exchange Collaboration Data Objects (EXCDO) functionality in Microsoft Exchange Server 2000... High Unreviewed
CVE-2007-0039 was published May 1, 2022
FileZilla Server before 0.9.22 allows remote attackers to cause a denial of service (crash) via a... Moderate Unreviewed
CVE-2006-6565 was published May 1, 2022
Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when... Low Unreviewed
CVE-2005-3274 was published May 1, 2022
The huft_build function in inflate.c in the zlib routines in the Linux kernel before 2.6.12.5... Moderate Unreviewed
CVE-2005-2459 was published May 1, 2022
VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for... Moderate Unreviewed
CVE-2005-0772 was published May 1, 2022
SkyStream EMR5000 1.16 through 1.18 does not drop packets or disable the Ethernet interface when... Moderate Unreviewed
CVE-2002-1912 was published Apr 30, 2022
The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead... Low Unreviewed
CVE-2001-1559 was published Apr 30, 2022
IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash. Moderate Unreviewed
CVE-1999-0052 was published Apr 30, 2022
A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c in Freeware... Moderate Unreviewed
CVE-2018-20199 was published Apr 30, 2022
It was found that an attacker could issue a xattr request via glusterfs FUSE to cause gluster... Moderate Unreviewed
CVE-2018-10914 was published Apr 30, 2022
A NULL pointer dereference flaw was found in pesign's cms_set_pw_data() function of the... Low Unreviewed
CVE-2022-1249 was published Apr 30, 2022
mah-jong before 1.6.2 allows remote attackers to cause a denial of service (server crash) via a... Moderate Unreviewed
CVE-2004-0458 was published Apr 29, 2022
RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of... High Unreviewed
CVE-2004-0389 was published Apr 29, 2022
The dissect_attribute_value_pairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2... Moderate Unreviewed
CVE-2004-0365 was published Apr 29, 2022
The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows... High Unreviewed
CVE-2004-0119 was published Apr 29, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database