Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,315 advisories

Loading
SixLabors ImageSharp has Excessive Memory Allocation in Gif Decoder Moderate
CVE-2024-41132 was published for SixLabors.ImageSharp (NuGet) Jul 22, 2024
ErazerBrecht
Credited to ErazerBrecht
A malicious client can send many DNS messages over TCP, potentially causing the server to become... High Unreviewed
CVE-2024-0760 was published Jul 23, 2024
Resolver caches and authoritative zone databases that hold significant numbers of RRs for the... High Unreviewed
CVE-2024-1737 was published Jul 23, 2024
If a server hosts a zone containing a "KEY" Resource Record, or a resolver DNSSEC-validates a ... High Unreviewed
CVE-2024-1975 was published Jul 23, 2024
In the Linux kernel, the following vulnerability has been resolved: xdp: Remove WARN() from... Moderate Unreviewed
CVE-2024-42082 was published Jul 29, 2024
GraphQL Java does not properly consider ExecutableNormalizedFields (ENFs) as part of preventing denial of service High
CVE-2024-40094 was published for com.graphql-java:graphql-java (Maven) Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved: IB/core: Implement a limit... Moderate Unreviewed
CVE-2024-42145 was published Jul 30, 2024
A vulnerability has been found in Dahua products.Attackers can send carefully crafted data... High Unreviewed
CVE-2024-39944 was published Jul 31, 2024
REXML DoS vulnerability Moderate
CVE-2024-41123 was published for rexml (RubyGems) Aug 1, 2024
REXML DoS vulnerability Moderate
CVE-2024-41946 was published for rexml (RubyGems) Aug 2, 2024
naitoh
Credited to naitoh
In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci: Fix max_seg_size... Moderate Unreviewed
CVE-2024-42242 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/shmem: disable PMD-sized... Moderate Unreviewed
CVE-2024-42241 was published Aug 7, 2024
In the Linux kernel, the following vulnerability has been resolved: wireguard: allowedips: avoid... Moderate Unreviewed
CVE-2024-42247 was published Aug 7, 2024
Uncontrolled resource consumption refers to a software vulnerability where a attacker or system... High Unreviewed
CVE-2024-36462 was published Aug 12, 2024
In the Linux kernel, the following vulnerability has been resolved: mm: huge_memory: use ... Moderate Unreviewed
CVE-2024-42258 was published Aug 12, 2024
If exploited, this vulnerability could cause a SuiteLink server to consume excessive system... High Unreviewed
CVE-2024-7113 was published Aug 13, 2024
In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs)... High Unreviewed
CVE-2024-41727 was published Aug 14, 2024
Russh has an OOM Denial of Service due to allocation of untrusted amount High
CVE-2024-43410 was published for russh (Rust) Aug 14, 2024
Noratrieb Eugeny
Credited to Noratrieb and Eugeny
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an... Moderate Unreviewed
CVE-2024-5209 was published Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an... Moderate Unreviewed
CVE-2024-6004 was published Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an... Moderate Unreviewed
CVE-2024-5210 was published Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an... Moderate Unreviewed
CVE-2024-4781 was published Aug 16, 2024
A denial-of-service vulnerability was reported in some Lenovo printers that could allow an... Moderate Unreviewed
CVE-2024-4782 was published Aug 16, 2024
When performing an online tag generation to devices which communicate using the ControlLogix... Moderate Unreviewed
CVE-2024-6098 was published Aug 16, 2024
In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in... Moderate Unreviewed
CVE-2024-43856 was published Aug 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database