Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

233 advisories

Loading
A deadlock flaw was found in the Linux kernel’s BPF subsystem. This flaw allows a local user to... Moderate Unreviewed
CVE-2023-0160 was published Jul 18, 2023
In multiple functions of io_uring.c, there is a possible kernel memory corruption due to... Moderate Unreviewed
CVE-2023-21400 was published Jul 13, 2023
In vcu, there is a possible use after free due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2023-20733 was published Jun 6, 2023
In vcu, there is a possible out of bounds write due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2023-20745 was published Jun 6, 2023
In vcu, there is a possible out of bounds write due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2023-20746 was published Jun 6, 2023
In vcu, there is a possible out of bounds write due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2023-20743 was published Jun 6, 2023
In vcu, there is a possible use after free due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2023-20737 was published Jun 6, 2023
Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained... Moderate Unreviewed
CVE-2023-2612 was published May 31, 2023
A denial of service problem was found, due to a possible recursive locking scenario, resulting in... Moderate Unreviewed
CVE-2023-2269 was published Apr 25, 2023
In vcu, there is a possible memory corruption due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2023-20618 was published Feb 6, 2023
In vcu, there is a possible memory corruption due to improper locking. This could lead to local... Moderate Unreviewed
CVE-2023-20619 was published Feb 6, 2023
Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to... Moderate Unreviewed
CVE-2022-42328 was published Dec 7, 2022
Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to... Moderate Unreviewed
CVE-2022-42329 was published Dec 7, 2022
In camera driver, there is a possible memory corruption due to improper locking. This could lead... Moderate Unreviewed
CVE-2022-39131 was published Dec 6, 2022
In camera driver, there is a possible memory corruption due to improper locking. This could lead... Moderate Unreviewed
CVE-2022-42775 was published Dec 6, 2022
A flaw was found in the Linux kernel's Layer 2 Tunneling Protocol (L2TP). A missing lock when... Moderate Unreviewed
CVE-2022-4129 was published Nov 29, 2022
In camera driver, there is a possible memory corruption due to improper locking. This could lead... Moderate Unreviewed
CVE-2022-38690 was published Oct 15, 2022
In sched driver, there is a possible use after free due to improper locking. This could lead to... Moderate Unreviewed
CVE-2022-21775 was published Jul 7, 2022
MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_compress... Moderate Unreviewed
CVE-2022-31622 was published May 26, 2022
MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_compress... Moderate Unreviewed
CVE-2022-31623 was published May 26, 2022
MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_xbstream... Moderate Unreviewed
CVE-2022-31621 was published May 26, 2022
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it... Moderate Unreviewed
CVE-2021-1123 was published May 24, 2022
The Bluetooth Classic implementation on Actions ATS2815 and ATS2819 chipsets does not properly... Moderate Unreviewed
CVE-2021-31785 was published May 24, 2022
The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly... Moderate Unreviewed
CVE-2021-31611 was published May 24, 2022
btrfs in the Linux kernel before 5.13.4 allows attackers to cause a denial of service (deadlock)... Moderate Unreviewed
CVE-2021-38203 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database