Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

19 advisories

Loading
A path collision and arbitrary code execution vulnerability was identified in GitHub Enterprise... High Unreviewed
CVE-2024-10007 was published Nov 7, 2024
A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a... High Unreviewed
CVE-2022-31214 was published Jun 10, 2022
Firejail before 0.9.64.4 allows attackers to bypass intended access restrictions because there is... High Unreviewed
CVE-2021-26910 was published May 24, 2022
Firejail through 0.9.62 does not honor the -- end-of-options indicator after the --output option,... Moderate Unreviewed
CVE-2020-17367 was published May 24, 2022
Firejail through 0.9.62 mishandles shell metacharacters during use of the --output or --output... High Unreviewed
CVE-2020-17368 was published May 24, 2022
In Firejail before 0.9.60, seccomp filters are writable inside the jail, leading to a lack of... High Unreviewed
CVE-2019-12589 was published May 24, 2022
Firejail before 0.9.60 allows truncation (resizing to length 0) of the firejail binary on the... High Unreviewed
CVE-2019-12499 was published May 24, 2022
Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges. High Unreviewed
CVE-2016-10119 was published May 17, 2022
Firejail allows local users to truncate /etc/resolv.conf via a chroot command to /. Low Unreviewed
CVE-2016-10118 was published May 17, 2022
Firejail allows --chroot when seccomp is not supported, which might allow local users to gain... High Unreviewed
CVE-2016-10123 was published May 17, 2022
Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var... High Unreviewed
CVE-2016-10120 was published May 17, 2022
Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local... High Unreviewed
CVE-2016-10121 was published May 17, 2022
Firejail does not properly clean environment variables, which allows local users to gain privileges. High Unreviewed
CVE-2016-10122 was published May 17, 2022
Firejail does not restrict access to --tmpfs, which allows local users to gain privileges, as... High Unreviewed
CVE-2016-10117 was published May 17, 2022
Firejail 0.9.38.4 allows local users to execute arbitrary commands outside of the sandbox via a... High Unreviewed
CVE-2016-9016 was published May 17, 2022
Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehensively address... High Unreviewed
CVE-2017-5940 was published May 13, 2022
Firejail before 0.9.44.4, when running a bandwidth command, allows local users to gain root... High Unreviewed
CVE-2017-5207 was published May 13, 2022
Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent... Critical Unreviewed
CVE-2017-5206 was published May 13, 2022
Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority... High Unreviewed
CVE-2017-5180 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database