Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,316 advisories

Loading
amphp/http-client Denial of Service via HTTP/2 CONTINUATION Frames High
GHSA-w8gf-g2vq-j2f4 was published for amphp/http-client (Composer) Apr 3, 2024
bartekn
Credited to bartekn
In the Linux kernel, the following vulnerability has been resolved: dccp/tcp: Unhash sk from... Moderate Unreviewed
CVE-2024-26741 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: RDMA/qedr: Fix... Moderate Unreviewed
CVE-2024-26743 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: net: hsr: remove WARN_ONCE()... Moderate Unreviewed
CVE-2024-26707 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: powerpc/kasan: Limit KASAN... Moderate Unreviewed
CVE-2024-26710 was published Apr 3, 2024
QUIC's Connection ID Mechanism vulnerable to Memory Exhaustion Attack High
CVE-2024-22189 was published for github.com/quic-go/quic-go (Go) Apr 2, 2024
marten-seemann
Credited to marten-seemann
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause DOS through stack overflow. Low Unreviewed
CVE-2024-29086 was published Apr 2, 2024
In the Linux kernel, the following vulnerability has been resolved: ppp_async: limit MRU to 64K ... Moderate Unreviewed
CVE-2024-26675 was published Apr 2, 2024
IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.3 is vulnerable to a denial of... Moderate Unreviewed
CVE-2024-22353 was published Mar 31, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions... Moderate Unreviewed
CVE-2024-2818 was published Mar 28, 2024
An issue was discovered in Couchbase Server 6.6.x through 7.2.0, before 7.1.5 and 7.2.1.... High Unreviewed
CVE-2023-43768 was published Mar 27, 2024
VSeeFace through 1.13.38.c2 allows attackers to cause a denial of service (application hang) via... High Unreviewed
CVE-2024-26577 was published Mar 27, 2024
A security vulnerability in HPE IceWall Agent products could be exploited remotely to cause a... Moderate Unreviewed
CVE-2024-22436 was published Mar 26, 2024
In the Linux kernel, the following vulnerability has been resolved: thermal: intel: hfi: Add... Moderate Unreviewed
CVE-2024-26646 was published Mar 26, 2024
In the Linux kernel, the following vulnerability has been resolved: ext4: avoid online resizing... Moderate Unreviewed
CVE-2023-52622 was published Mar 26, 2024
Netty's HttpPostRequestDecoder can OOM Moderate
CVE-2024-29025 was published for io.netty:netty-codec-http (Maven) Mar 25, 2024
vietj
Credited to vietj
In the Linux kernel, the following vulnerability has been resolved: USB: usbfs: Don't WARN about... Moderate Unreviewed
CVE-2021-47170 was published Mar 25, 2024
In the Linux kernel, the following vulnerability has been resolved: net: lantiq: fix memory... High Unreviewed
CVE-2021-47137 was published Mar 25, 2024
Varnish Cache before 7.3.2 and 7.4.x before 7.4.3 (and before 6.0.13 LTS), and Varnish Enterprise... High Unreviewed
CVE-2024-30156 was published Mar 24, 2024
In the Linux kernel, the following vulnerability has been resolved: nvmet: fix freeing... Moderate Unreviewed
CVE-2021-47130 was published Mar 15, 2024
Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before... Moderate Unreviewed
CVE-2024-2446 was published Mar 15, 2024
Mattermost Server Resource Exhaustion Low
CVE-2024-28053 was published for github.com/mattermost/mattermost-server (Go) Mar 15, 2024
Allocation of Resources Without Limits or Throttling vulnerability in OpenText NetIQ Privileged... High Unreviewed
CVE-2020-11862 was published Mar 14, 2024
In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Always exit... Moderate Unreviewed
CVE-2024-26618 was published Mar 11, 2024
JWCrypto vulnerable to JWT bomb Attack in `deserialize` function Moderate
CVE-2024-28102 was published for jwcrypto (pip) Mar 6, 2024
P3ngu1nW
Credited to P3ngu1nW
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database