Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

771 advisories

Loading
In the Linux kernel through 4.14.13, drivers/block/loop.c mishandles lo_release serialization,... High Unreviewed
CVE-2018-5344 was published May 13, 2022
Race condition in the inet_frag_intern function in net/ipv4/inet_fragment.c in the Linux kernel... High Unreviewed
CVE-2014-0100 was published May 13, 2022
Race condition in the ath_tx_aggr_sleep function in drivers/net/wireless/ath/ath9k/xmit.c in the... High Unreviewed
CVE-2014-2672 was published May 13, 2022
Session fixation vulnerability in Symphony CMS 2.6.7, when session.use_only_cookies is disabled,... High Unreviewed
CVE-2016-4309 was published May 13, 2022
Race condition in the kernel in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2,... High Unreviewed
CVE-2013-1279 was published May 13, 2022
Race condition in the kernel in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2,... High Unreviewed
CVE-2013-1278 was published May 13, 2022
Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to gain privileges by... High Unreviewed
CVE-2016-9381 was published May 13, 2022
In core_info_read and inst_info_read in all Android releases from CAF using the Linux kernel,... High Unreviewed
CVE-2017-8244 was published May 13, 2022
Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit... High Unreviewed
CVE-2013-4288 was published May 13, 2022
Race conditions in opa-fm before 10.4.0.0.196 and opa-ff before 10.4.0.0.197. High Unreviewed
CVE-2015-5232 was published May 13, 2022
In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when... High Unreviewed
CVE-2019-0217 was published May 13, 2022
Race condition in the sctp_icmp_proto_unreachable function in net/sctp/input.c in Linux kernel 2... High Unreviewed
CVE-2010-4526 was published May 13, 2022
The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote... High Unreviewed
CVE-2016-4954 was published May 13, 2022
In bta_hl_sdp_query_results of bta_hl_main.cc, there is a possible use-after-free due to a race... High Unreviewed
CVE-2019-1992 was published May 13, 2022
The svpn component of the F5 BIG-IP APM client prior to version 7.1.7.2 for Linux and macOS runs... High Unreviewed
CVE-2018-15332 was published May 13, 2022
A race condition in chown_one() of systemd allows an attacker to cause systemd to set arbitrary... High Unreviewed
CVE-2018-15687 was published May 13, 2022
Race condition in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute... High Unreviewed
CVE-2010-2558 was published May 13, 2022
Race condition in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute... High Unreviewed
CVE-2011-1257 was published May 13, 2022
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to... High Unreviewed
CVE-2016-5195 was published May 13, 2022
In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles... High Unreviewed
CVE-2019-6974 was published May 13, 2022
Incorrect handling of picture ID in WebRTC in Google Chrome prior to 58.0.3029.96 for Mac,... High Unreviewed
CVE-2017-5068 was published May 13, 2022
An exploitable vulnerability exists in the signature verification of the firmware update... High Unreviewed
CVE-2017-2898 was published May 13, 2022
An exploitable double fetch vulnerability exists in the SboxDrv.sys driver functionality of... High Unreviewed
CVE-2016-9038 was published May 13, 2022
In startActivityForAttachedApplicationIfNeeded of RootWindowContainer.java, there is a possible... High Unreviewed
CVE-2022-20007 was published May 11, 2022
In several functions of KeyguardServiceWrapper.java and related files,, there is a possible way... High Unreviewed
CVE-2022-20006 was published May 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database