Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,645 advisories

Loading
Race in Mojo in Google Chrome prior to 85.0.4183.102 allowed a remote attacker who had... High Unreviewed
CVE-2020-6575 was published May 24, 2022
In CamX code, there is a possible use after free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2020-0428 was published May 24, 2022
In SoundTriggerHwService, there is a possible out of bounds read due to a race condition. This... Moderate Unreviewed
CVE-2020-0373 was published May 24, 2022
A race condition vulnerability was reported in Lenovo System Update prior to version 5.07.0106... High Unreviewed
CVE-2020-8342 was published May 24, 2022
A race condition between hugetlb sysctl handlers in mm/hugetlb.c in the Linux kernel before 5.8.8... High Unreviewed
CVE-2020-25285 was published May 24, 2022
Razer Chroma SDK Rest Server through 3.12.17 allows remote attackers to execute arbitrary... Moderate Unreviewed
CVE-2020-16602 was published May 24, 2022
An issue was discovered in wolfSSL before 4.5.0, when single precision is not employed. Local... Moderate Unreviewed
CVE-2020-15309 was published May 24, 2022
GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free... Moderate Unreviewed
CVE-2020-15706 was published May 24, 2022
Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the... Moderate Unreviewed
CVE-2020-15707 was published May 24, 2022
A Race Condition vulnerability in Juniper Networks Junos OS LLDP implementation allows an... Low Unreviewed
CVE-2020-1641 was published May 24, 2022
Go before 1.13.13 and 1.14.x before 1.14.5 has a data race in some net/http servers, as... Moderate Unreviewed
CVE-2020-15586 was published May 24, 2022
In cdev_get of char_dev.c, there is a possible use-after-free due to a race condition. This could... Moderate Unreviewed
CVE-2020-0305 was published May 24, 2022
In FreeBSD 12.1-STABLE before r359565, 12.1-RELEASE before p7, 11.4-STABLE before r362975, 11.4... Moderate Unreviewed
CVE-2020-7457 was published May 24, 2022
When trying to connect to a STUN server, a race condition could have caused a use-after-free of a... High Unreviewed
CVE-2020-12420 was published May 24, 2022
A VideoStreamEncoder may have been freed in a race condition with VideoBroadcaster:... High Unreviewed
CVE-2020-12416 was published May 24, 2022
When browsing a malicious page, a race condition in our SharedWorkerService could occur and lead... Low Unreviewed
CVE-2020-12405 was published May 24, 2022
An issue was discovered in Xen through 4.13.x, allowing Intel guest OS users to gain privileges... Moderate Unreviewed
CVE-2020-15567 was published May 24, 2022
In HylaFAX+ through 7.0.2 and HylaFAX Enterprise, the faxsetup utility calls chown on files in... High Unreviewed
CVE-2020-15396 was published May 24, 2022
MiR robot controllers (central computation unit) makes use of Ubuntu 16.04.2 an operating system,... High Unreviewed
CVE-2020-10279 was published May 24, 2022
A vulnerability in the endpoint software of Cisco AMP for Endpoints and Clam AntiVirus could... Low Unreviewed
CVE-2020-3350 was published May 24, 2022
In the Linux kernel before 5.4.16, a race condition in tty->disc_data handling in the slip and... High Unreviewed
CVE-2020-14416 was published May 24, 2022
A race condition was addressed with improved state handling. This issue is fixed in iOS 13.5 and... Moderate Unreviewed
CVE-2020-9839 was published May 24, 2022
A vulnerability in the syslog processing engine of Cisco Identity Services Engine (ISE) could... Moderate Unreviewed
CVE-2020-3353 was published May 24, 2022
A race condition was found in the mkhomedir tool shipped with the oddjob package in versions... Moderate Unreviewed
CVE-2020-10737 was published May 24, 2022
A race condition when running shutdown code for Web Worker led to a use-after-free vulnerability.... Moderate Unreviewed
CVE-2020-12387 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database