Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

342 advisories

Loading
In AcvpOnMessage of avcp.cpp, there is a possible EOP due to uninitialized data. This could lead... High Unreviewed
CVE-2024-32906 was published Jun 13, 2024
ANGLE failed to initialize parameters which lead to reading from uninitialized memory. This could... High Unreviewed
CVE-2024-7526 was published Aug 6, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Avoid uninitialized... High Unreviewed
CVE-2024-42161 was published Jul 30, 2024
Use of uninitialized resource issue exists in IPCOM EX2 Series (V01L0x Series) V01L07NF0201 and... Moderate Unreviewed
CVE-2024-36454 was published Jun 12, 2024
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: replace skb_put... High Unreviewed
CVE-2024-42225 was published Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: Initialize... Moderate Unreviewed
CVE-2024-42076 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: vdpa/mlx5: add validation... Moderate Unreviewed
CVE-2022-48864 was published Jul 16, 2024
In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack... Moderate Unreviewed
CVE-2024-32910 was published Jun 13, 2024
In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible... Moderate Unreviewed
CVE-2024-29780 was published Jun 13, 2024
In aur_get_state of aurora.c, there is a possible information disclosure due to uninitialized... Moderate Unreviewed
CVE-2024-29785 was published Jun 13, 2024
Windows TCP/IP Information Disclosure Vulnerability High Unreviewed
CVE-2024-38064 was published Jul 9, 2024
In the Linux kernel, the following vulnerability has been resolved: block: Fix wrong offset in... High Unreviewed
CVE-2022-48747 was published Jun 20, 2024
In the Linux kernel, the following vulnerability has been resolved: cpumap: Zero-initialise... Moderate Unreviewed
CVE-2024-27431 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: do_sys_name_to_handle(): use... Moderate Unreviewed
CVE-2024-26901 was published Apr 17, 2024
In the Linux kernel, the following vulnerability has been resolved: fork: defer linking file vma... High Unreviewed
CVE-2024-27022 was published May 1, 2024
Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this... High Unreviewed
CVE-2024-36503 was published Jun 14, 2024
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf:... Moderate Unreviewed
CVE-2022-48654 was published Apr 28, 2024
OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2021-35000 was published May 8, 2024
OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2021-34999 was published May 8, 2024
Information disclosure in modem due to missing NULL check while reading packets received from... High Unreviewed
CVE-2022-25737 was published Apr 13, 2023
Windows CoreMessaging Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-20694 was published Jan 9, 2024
there is a possible Information Disclosure due to uninitialized data. This could lead to local... Moderate Unreviewed
CVE-2024-29745 was published Apr 5, 2024
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-26209 was published Apr 9, 2024
Windows Mobile Hotspot Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-26220 was published Apr 9, 2024
crayon: ObjectPool creates uninitialized memory when freeing objects High
GHSA-xfhw-6mc4-mgxf was published for crayon (Rust) Apr 5, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database