Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,479
Maven
5,000+
npm
5,000+
NuGet
886
pip
4,740
Pub
13
RubyGems
1,031
Rust
1,225
Swift
53
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

27 advisories

Loading
Buffer Overflow Vulnerability in JP1/IT Desktop Management 2 - Manager on Windows, JP1/IT Desktop... Moderate Unreviewed
CVE-2025-65116 was published Apr 7, 2026
Microsoft FastTube 1.0.1.0 contains a denial of service vulnerability that allows local attackers... Moderate Unreviewed
CVE-2018-25243 was published Apr 4, 2026
Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fs_inoderemove... Moderate Unreviewed
CVE-2025-48768 was published Jan 1, 2026
An issue was discovered in NPU in Samsung Mobile Processor Exynos through July 2025. There is an... Moderate Unreviewed
CVE-2025-54333 was published Nov 4, 2025
In the Linux kernel, the following vulnerability has been resolved: efi/libstub: Free correct... Moderate Unreviewed
CVE-2024-56573 was published Dec 27, 2024
In the Linux kernel, the following vulnerability has been resolved: kunit/fortify: Fix... Moderate Unreviewed
CVE-2024-38617 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: cpufreq: schedutil: Use... Moderate Unreviewed
CVE-2021-47387 was published May 21, 2024
In the Linux kernel, the following vulnerability has been resolved: bcachefs: kvfree bch_fs:... Moderate Unreviewed
CVE-2024-35832 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix crash... Moderate Unreviewed
CVE-2022-49160 was published Sep 23, 2025
An issue was discovered in Samsung Semiconductor Mobile Processor, Automotive Processor, and... Moderate Unreviewed
CVE-2024-25074 was published Sep 10, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/slub: actually fix... Moderate Unreviewed
CVE-2021-47221 was published May 21, 2024
An invalid memory address reference was discovered in the adjABS function in p_lx_elf.cpp in UPX... Moderate Unreviewed
CVE-2020-27798 was published Aug 26, 2022
An invalid memory address reference was discovered in the elf_lookup function in p_lx_elf.cpp in... Moderate Unreviewed
CVE-2020-27797 was published Aug 26, 2022
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix releasing... Moderate Unreviewed
CVE-2021-47615 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Page fault in... Moderate Unreviewed
CVE-2022-48835 was published Jul 16, 2024
Copy_from_user on 64-bit versions of the Linux kernel does not implement the... Moderate Unreviewed
CVE-2023-0459 was published Jul 6, 2023
libdwarf before 20201017 has a one-byte out-of-bounds read because of an invalid pointer... Moderate Unreviewed
CVE-2020-27545 was published Apr 16, 2023
An issue was discovered in drivers/tty/n_gsm.c in the Linux kernel 6.2. There is a sleeping... Moderate Unreviewed
CVE-2023-31082 was published Apr 24, 2023
A lack of pointer-validation logic in the __scone_dispatch component of SCONE before v5.8.0 for... Moderate Unreviewed
CVE-2022-46486 was published Dec 30, 2023
It was found in libtiff 4.4.0rc1 that there is an invalid pointer free operation in TIFFClose()... Moderate Unreviewed
CVE-2022-2521 was published Sep 1, 2022
lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a... Moderate Unreviewed
CVE-2020-24371 was published May 24, 2022
There is a release of invalid pointer vulnerability in some Huawei products, successful exploit... Moderate Unreviewed
CVE-2021-40042 was published Feb 1, 2022
An Invalid Pointer vulnerability exists in GNU patch 2.7 via the another_hunk function, which... Moderate Unreviewed
CVE-2021-45261 was published Dec 23, 2021
lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an... Moderate Unreviewed
CVE-2015-2695 was published May 13, 2022
An issue was discovered in drivers/accessibility/speakup/spk_ttyio.c in the Linux kernel through... Moderate Unreviewed
CVE-2020-28941 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database