Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

311 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/memhp: Fix... High Unreviewed
CVE-2023-52451 was published Feb 22, 2024
Memory corruption when negative display IDs are sent as input while processing DISPLAYESCAPE... High Unreviewed
CVE-2023-43535 was published Feb 6, 2024
tiny-curl-8_4_0 , curl-8_4_0 and curl-8_5_0 were discovered to contain an off-by-one out-of... Moderate Unreviewed
CVE-2023-52071 was published Jan 30, 2024
Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_process_block autosort... High Unreviewed
CVE-2023-39235 was published Jan 8, 2024
Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_process_block autosort... High Unreviewed
CVE-2023-39234 was published Jan 8, 2024
Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta... High Unreviewed
CVE-2023-35995 was published Jan 8, 2024
Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta... High Unreviewed
CVE-2023-35996 was published Jan 8, 2024
Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta... High Unreviewed
CVE-2023-35997 was published Jan 8, 2024
Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta... High Unreviewed
CVE-2023-35994 was published Jan 8, 2024
Memory corruption in Kernel while parsing metadata. High Unreviewed
CVE-2023-33053 was published Dec 5, 2023
A vulnerability classified as problematic was found in Apryse iText 8.0.2. This vulnerability... Moderate Unreviewed
CVE-2023-6298 was published Nov 27, 2023
An out-of-bounds write vulnerability exists within the parsers for both the "DocumentViewStyles"... High Unreviewed
CVE-2023-35126 was published Oct 19, 2023
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application. High Unreviewed
CVE-2023-24850 was published Oct 3, 2023
Memory corruption in WLAN HAL while handling command streams through WMI interfaces. High Unreviewed
CVE-2023-28565 was published Sep 5, 2023
Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART. High Unreviewed
CVE-2023-28548 was published Sep 5, 2023
Memory corruption in WLAN handler while processing PhyID in Tx status handler. High Unreviewed
CVE-2023-28558 was published Sep 5, 2023
Memory corruption in WLAN HAL while handling command through WMI interfaces. High Unreviewed
CVE-2023-28567 was published Sep 5, 2023
Memory corruption in WLAN HAL while parsing WMI command parameters. High Unreviewed
CVE-2023-28573 was published Sep 5, 2023
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload. High Unreviewed
CVE-2023-28557 was published Sep 5, 2023
Memory corruption due to improper validation of array index in Audio. High Unreviewed
CVE-2022-40534 was published Sep 5, 2023
Memory Corruption due to improper validation of array index in Linux while updating adn record. High Unreviewed
CVE-2023-21636 was published Sep 5, 2023
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum... High Unreviewed
CVE-2022-33275 was published Sep 5, 2023
Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length. High Unreviewed
CVE-2023-21650 was published Aug 8, 2023
Duktape is an 3rd-party embeddable JavaScript engine, with a focus on portability and compact... High Unreviewed
CVE-2023-29458 was published Jul 13, 2023
An access violation vulnerability exists in the GraphPlanar::Write functionality of Diagon v1.0... High Unreviewed
CVE-2023-31194 was published Jul 5, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database