Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,642 advisories

Loading
In display, there is a possible memory corruption due to a race condition. This could lead to... Moderate Unreviewed
CVE-2023-20771 was published Jul 4, 2023
In installKey of KeyUtil.cpp, there is a possible failure of file encryption due to a race... Moderate Unreviewed
CVE-2023-21178 was published Jun 28, 2023
A race condition was addressed with improved state handling. This issue is fixed in watchOS 9.5,... High Unreviewed
CVE-2023-32413 was published Jun 23, 2023
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in... High Unreviewed
CVE-2023-35829 was published Jun 19, 2023
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in... High Unreviewed
CVE-2023-35828 was published Jun 19, 2023
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in... High Unreviewed
CVE-2023-35826 was published Jun 19, 2023
An issue was discovered in the Linux kernel through 6.3.8. A use-after-free was found in... High Unreviewed
CVE-2023-35827 was published Jun 19, 2023
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in... High Unreviewed
CVE-2023-35823 was published Jun 19, 2023
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in... High Unreviewed
CVE-2023-35824 was published Jun 19, 2023
In multiple functions of WVDrmPlugin.cpp, there is a possible use after free due to a race... High Unreviewed
CVE-2023-21101 was published Jun 15, 2023
In canStartSystemGesture of RecentsAnimationDeviceState.java, there is a possible partial... Moderate Unreviewed
CVE-2023-21095 was published Jun 15, 2023
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products,... High Unreviewed
CVE-2022-31645 was published Jun 14, 2023
In swpm, there is a possible out of bounds write due to a race condition. This could lead to... Moderate Unreviewed
CVE-2023-20750 was published Jun 6, 2023
In vcu, there is a possible out of bounds write due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2023-20736 was published Jun 6, 2023
Multiple race conditions in the font initialization could have led to memory corruption and... High Unreviewed
CVE-2023-29537 was published Jun 2, 2023
Libarchive through 3.6.2 can cause directories to have world-writable permissions. The umask()... Moderate Unreviewed
CVE-2023-30571 was published May 29, 2023
There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the... Moderate Unreviewed
CVE-2023-2898 was published May 27, 2023
A denial of service vulnerability exists in curl <v8.1.0 in the way libcurl provides several... Moderate Unreviewed
CVE-2023-28320 was published May 26, 2023
The Gallery app has the risk of hijacking attacks. Successful exploitation of this vulnerability... Low Unreviewed
CVE-2023-31225 was published May 26, 2023
The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net... Moderate Unreviewed
CVE-2023-33203 was published May 18, 2023
VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application... Moderate Unreviewed
CVE-2023-32570 was published May 10, 2023
An authentication bypass vulnerability exists in Avalanche versions 6.3.x and below that could... Moderate Unreviewed
CVE-2023-28126 was published May 10, 2023
An improper authentication vulnerability exists in Avalanche Premise versions 6.3.x and below... Moderate Unreviewed
CVE-2023-28125 was published May 10, 2023
Windows Graphics Component Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-24899 was published May 9, 2023
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability High Unreviewed
CVE-2023-24903 was published May 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database