GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,972
Composer 4,285
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,238
npm 3,741
NuGet 668
pip 3,422
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,017

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

271 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote... Moderate Unreviewed

CVE-2020-13113 was published May 24, 2022

An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6.5, and 2.7.0. If a victim... Moderate Unreviewed

CVE-2020-10933 was published May 24, 2022

Uninitialized use in WebRTC in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to... Moderate Unreviewed

CVE-2020-6444 was published May 24, 2022

An issue was discovered in slc_bump in drivers/net/can/slcan.c in the Linux kernel through 5.6.2.... Low Unreviewed

CVE-2020-11494 was published May 24, 2022

In Apache HTTP Server 2.4.0 to 2.4.41, mod_proxy_ftp may use uninitialized memory when proxying... High Unreviewed

CVE-2020-1934 was published May 24, 2022

When processing an email message with an ill-formed envelope, Thunderbird could read data from a... Moderate Unreviewed

CVE-2020-6793 was published May 24, 2022

When deriving an identifier for an email message, uninitialized memory was used in addition to... Moderate Unreviewed

CVE-2020-6792 was published May 24, 2022

Use of uninitialized data in PDFium in Google Chrome prior to 80.0.3987.87 allowed a remote... Moderate Unreviewed

CVE-2020-6398 was published May 24, 2022

In rw_i93_send_cmd_write_single_block of rw_i93.cc, there is a possible information disclosure of... Moderate Unreviewed

CVE-2020-0006 was published May 24, 2022

In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to... Low Unreviewed

CVE-2020-0007 was published May 24, 2022

In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB... Low Unreviewed

CVE-2019-19947 was published May 24, 2022

Uninitialized data in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to... Moderate Unreviewed

CVE-2019-13751 was published May 24, 2022

In the Linux kernel before 5.2.9, there is an info-leak bug that can be caused by a malicious USB... Low Unreviewed

CVE-2019-19535 was published May 24, 2022

In the Linux kernel through 5.3.8, f->fmt.sdr.reserved is uninitialized in... Low Unreviewed

CVE-2019-18786 was published May 24, 2022

OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to information leakage upon certain error... Moderate Unreviewed

CVE-2019-18603 was published May 24, 2022

OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to an information disclosure vulnerability... High Unreviewed

CVE-2019-18602 was published May 24, 2022

An uninitialized memory access vulnerability exists in the way Aspose.PDF 19.2 for C++ handles... High Unreviewed

CVE-2019-5067 was published May 24, 2022

Use of uninitialized stack variables in the start_decoder function in stb_vorbis through 2019-03... High Unreviewed

CVE-2019-13220 was published May 24, 2022

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is:... Moderate Unreviewed

CVE-2019-1010317 was published May 24, 2022

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is:... Moderate Unreviewed

CVE-2019-1010319 was published May 24, 2022

ImageMagick before 7.0.8-50 has a "use of uninitialized value" vulnerability in the function... High Unreviewed

CVE-2019-13135 was published May 24, 2022

Uninitialized data in media in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to... Moderate Unreviewed

CVE-2019-5818 was published May 24, 2022

When using gdImageCreateFromXbm() function of gd extension in versions 7.1.x below 7.1.30, 7.2.x... Moderate Unreviewed

CVE-2019-11038 was published May 24, 2022

fs/ext4/extents.c in the Linux kernel through 5.1.2 does not zero out the unused memory region in... Moderate Unreviewed

CVE-2019-11833 was published May 24, 2022

A latent vulnerability exists in the Prio library where data may be read from uninitialized... Critical Unreviewed

CVE-2019-9805 was published May 24, 2022

Previous 1 2 … 6 7 8 9 10 11 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

271 advisories