Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,367 advisories

Loading
A segmentation fault can occur in Brocade Fabric OS after Brocade Fabric OS v9.0 and before... Moderate Unreviewed
CVE-2023-4162 was published Aug 31, 2023
Esoteric YamlBeans XML Entity Expansion vulnerability Moderate
CVE-2023-24620 was published for com.esotericsoftware.yamlbeans:yamlbeans (Maven) Aug 25, 2023
read_ints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU... Moderate Unreviewed
CVE-2022-48564 was published Aug 22, 2023
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability... Moderate Unreviewed
CVE-2022-48064 was published Aug 22, 2023
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability... Moderate Unreviewed
CVE-2022-48063 was published Aug 22, 2023
In Poppler 22.07.0, PDFDoc::savePageAs in PDFDoc.c callows attackers to cause a denial-of-service... Moderate Unreviewed
CVE-2022-37050 was published Aug 22, 2023
An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13... Moderate Unreviewed
CVE-2020-18770 was published Aug 22, 2023
A use-after-free flaw was found in btrfs_get_dev_args_from_path in fs/btrfs/volumes.c in btrfs... Moderate Unreviewed
CVE-2023-4394 was published Aug 17, 2023
In setMediaButtonBroadcastReceiver of MediaSessionRecord.java, there is a possible permanent DoS... Moderate Unreviewed
CVE-2023-21280 was published Aug 15, 2023
SUCHMOKUO node-worker-threads-pool denial of service Vulnerability Moderate
CVE-2021-29057 was published for node-worker-threads-pool (npm) Aug 11, 2023
nalandial
Credited to nalandial
Uncontrolled resource consumption in some Intel(R) SSD Tools software before version mdadm-4.2... Moderate Unreviewed
CVE-2023-28938 was published Aug 11, 2023
Adobe XMP Toolkit versions 2022.06 is affected by a Uncontrolled Resource Consumption... Moderate Unreviewed
CVE-2023-38210 was published Aug 10, 2023
Extremely large RSA keys in certificate chains can cause a client/server to expend significant... Moderate Unreviewed
CVE-2023-29409 was published Aug 2, 2023
A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a... Moderate Unreviewed
CVE-2023-34872 was published Jul 31, 2023
Denial of service in neutron Moderate
CVE-2023-3637 was published for neutron (pip) Jul 25, 2023
DoS of the OkHttp client when using a BrotliInterceptor and surfing to a malicious web server, or... Moderate Unreviewed
CVE-2023-3782 was published Jul 19, 2023
ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the... Moderate Unreviewed
CVE-2023-37140 was published Jul 18, 2023
ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the... Moderate Unreviewed
CVE-2023-37141 was published Jul 18, 2023
ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the... Moderate Unreviewed
CVE-2023-37142 was published Jul 18, 2023
ChakraCore branch master cbb9b was discovered to contain a segmentation violation via the... Moderate Unreviewed
CVE-2023-37143 was published Jul 18, 2023
An issue was discovered in ngiflib 0.4. There is SEGV in SDL_LoadAnimatedGif when use SDLaffgif.... Moderate Unreviewed
CVE-2022-30858 was published Jul 17, 2023
Mattermost fails to properly validate markdown, allowing an attacker to crash the server via a... Moderate Unreviewed
CVE-2023-3593 was published Jul 17, 2023
Mattermost Boards fail to properly validate a board link, allowing an attacker to crash a channel... Moderate Unreviewed
CVE-2023-3585 was published Jul 17, 2023
JavaScript preprocessing, webhooks and global scripts can cause uncontrolled CPU, memory, and... Moderate Unreviewed
CVE-2023-29449 was published Jul 13, 2023
In Policy of Policy.java, there is a possible boot loop due to resource exhaustion. This could... Moderate Unreviewed
CVE-2023-21240 was published Jul 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database