Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,816 advisories

Loading
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4151 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4157 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4155 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4156 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4158 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4166 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4154 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10... High Unreviewed
CVE-2018-4167 was published May 13, 2022
A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software... High Unreviewed
CVE-2018-8897 was published May 13, 2022
In HTSlib 1.8, a race condition in cram/cram_io.c might allow local users to overwrite arbitrary... Moderate Unreviewed
CVE-2018-14329 was published May 13, 2022
A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read... High Unreviewed
CVE-2018-14625 was published May 14, 2022
Debian tmpreaper version 1.6.13+nmu1 has a race condition when doing a (bind) mount via rename()... High Unreviewed
CVE-2019-3461 was published May 14, 2022
Race condition in Puppet Server 0.2.0 allows local users to obtain sensitive information by... Low Unreviewed
CVE-2014-7170 was published May 14, 2022
The MCollective aes_security plugin, as used in Puppet Enterprise before 3.3.0 and Mcollective... Moderate Unreviewed
CVE-2014-3251 was published May 14, 2022
** DISPUTED ** The Linux kernel through 5.0.7, when CONFIG_IA32_AOUT is enabled and ia32_aout is... Low Unreviewed
CVE-2019-11191 was published May 14, 2022
ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when... Moderate Unreviewed
CVE-2015-3196 was published May 14, 2022
The Linux kernel before 4.8 allows local users to bypass ASLR on setuid programs (such as /bin/su... Moderate Unreviewed
CVE-2019-11190 was published May 14, 2022
In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and 4.4.133, multiple race... High Unreviewed
CVE-2018-5814 was published May 14, 2022
Race condition in the Pragmatic General Multicast (PGM) protocol implementation in Microsoft... High Unreviewed
CVE-2015-6126 was published May 14, 2022
389-ds-base before versions 1.4.0.10, 1.3.8.3 is vulnerable to a race condition in the way 389-ds... High Unreviewed
CVE-2018-10850 was published May 14, 2022
In the Linux kernel through 4.19, a use-after-free can occur due to a race condition between... High Unreviewed
CVE-2018-18559 was published May 14, 2022
Race condition in the grant table code in Xen 4.6.x through 4.9.x allows local guest OS... High Unreviewed
CVE-2017-12136 was published May 14, 2022
A certain Red Hat patch to the KVM subsystem in the kernel package before 2.6.32-358.11.1.el6 on... Moderate Unreviewed
CVE-2013-1935 was published May 14, 2022
Race condition in Luci 0.26.0 creates /var/lib/luci/etc/luci.ini with world-readable permissions... Low Unreviewed
CVE-2013-4481 was published May 14, 2022
/usr/libexec/openldap/generate-server-cert.sh in openldap-servers sets weak permissions for the... Moderate Unreviewed
CVE-2016-4984 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database