Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

221 advisories

Loading
The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a... High Unreviewed
CVE-2010-4210 was published May 17, 2022
In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this... Low Unreviewed
CVE-2019-6156 was published May 13, 2022
An issue was discovered in ShopXO 1.2.0. In the application\install\controller\Index.php file,... Critical Unreviewed
CVE-2019-5886 was published May 13, 2022
A vulnerability in the FTP inspection engine of Cisco Firepower Threat Defense (FTD) Software... High Unreviewed
CVE-2018-15390 was published May 13, 2022
A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance ... High Unreviewed
CVE-2018-0228 was published May 13, 2022
A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an... Moderate Unreviewed
CVE-2018-0381 was published May 13, 2022
A certain Red Hat patch for net/ipv4/route.c in the Linux kernel 2.6.18 on Red Hat Enterprise... High Unreviewed
CVE-2009-4272 was published May 2, 2022
The kernel in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_103, does not properly handle... Moderate Unreviewed
CVE-2009-2857 was published May 2, 2022
The Solaris pollset feature in the Event Port backend in poll/unix/port.c in the Apache Portable... Moderate Unreviewed
CVE-2009-2699 was published May 2, 2022
The inode double locking code in fs/ocfs2/file.c in the Linux kernel 2.6.30 before 2.6.30-rc3, 2... Low Unreviewed
CVE-2009-1961 was published May 2, 2022
The ptrace_start function in kernel/ptrace.c in the Linux kernel 2.6.18 does not properly handle... Moderate Unreviewed
CVE-2009-1388 was published May 2, 2022
net/ipv4/udp.c in the Linux kernel before 2.6.29.1 performs an unlocking step in certain... Low Unreviewed
CVE-2009-1243 was published May 2, 2022
The inotify_read function in the Linux kernel 2.6.27 to 2.6.27.13, 2.6.28 to 2.6.28.2, and 2.6.29... Moderate Unreviewed
CVE-2009-0935 was published May 2, 2022
fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle... Moderate Unreviewed
CVE-2008-4302 was published May 2, 2022
The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote... Low Unreviewed
CVE-2006-5158 was published May 1, 2022
The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to... Moderate Unreviewed
CVE-2006-4342 was published May 1, 2022
The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2,... Low Unreviewed
CVE-2006-2374 was published May 1, 2022
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (deadlock)... Moderate Unreviewed
CVE-2006-2275 was published May 1, 2022
The handle_stop_signal function in signal.c in Linux kernel 2.6.11 up to other versions before 2... Moderate Unreviewed
CVE-2005-3847 was published May 1, 2022
Race condition in Linux 2.6, when threads are sharing memory mapping via CLONE_VM (such as... Low Unreviewed
CVE-2005-3106 was published May 1, 2022
Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6... Low Unreviewed
CVE-2005-2456 was published May 1, 2022
tip on multiple BSD-based operating systems allows local users to cause a denial of service ... Low Unreviewed
CVE-2002-1915 was published Apr 30, 2022
dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention)... Low Unreviewed
CVE-2002-1914 was published Apr 30, 2022
Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log... Low Unreviewed
CVE-2002-1869 was published Apr 30, 2022
mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and possibly remote attackers to cause a... Moderate Unreviewed
CVE-2002-1850 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database