Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

336 advisories

Loading
In BIG-IP Versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when... High Unreviewed
CVE-2022-34655 was published Aug 5, 2022
Uninitialized use in Media in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to... High Unreviewed
CVE-2021-30578 was published May 24, 2022
The RISC-V Instruction Set Manual contains a documented ambiguity for the Machine Trap Vector... Critical Unreviewed
CVE-2021-1104 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource... Low Unreviewed
CVE-2021-36282 was published May 24, 2022
Adobe Prelude version 10.0 (and earlier) are affected by an uninitialized variable vulnerability... Low Unreviewed
CVE-2021-36007 was published May 24, 2022
In FreeBSD 13.0-STABLE before n246941-20f96f215562, 12.2-STABLE before r370400, 11.4-STABLE... High Unreviewed
CVE-2021-29631 was published May 24, 2022
An information disclosure vulnerability was found in the virtio vhost-user GPU device (vhost-user... Moderate Unreviewed
CVE-2021-3545 was published May 24, 2022
In memzero_explicit of compiler-clang.h, there is a possible bypass of defense in depth due to... Moderate Unreviewed
CVE-2021-0938 was published May 24, 2022
An issue was discovered in function scanallsubs in src/sbbs3/scansubs.cpp in Synchronet BBS,... High Unreviewed
CVE-2021-36512 was published May 24, 2022
This vulnerability allows local attackers to disclose sensitive information on affected... Moderate Unreviewed
CVE-2021-34855 was published May 24, 2022
In display driver, there is a possible memory corruption due to uninitialized data. This could... High Unreviewed
CVE-2021-0634 was published May 24, 2022
In PVRSRVBridgeHeapCfgHeapDetails, there is a possible leak of kernel heap content due to... Moderate Unreviewed
CVE-2021-0698 was published Aug 25, 2022
In PVRSRVBridgeHeapCfgHeapConfigName, there is a possible leak of kernel heap content due to... Moderate Unreviewed
CVE-2021-0887 was published Aug 25, 2022
In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB... Low Unreviewed
CVE-2019-19947 was published May 24, 2022
The libtiff-4.0.3-35.amzn2.0.1 package for LibTIFF on Amazon Linux 2 allows attackers to cause a... Moderate Unreviewed
CVE-2022-34266 was published Jul 20, 2022
There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted... Moderate Unreviewed
CVE-2020-35494 was published May 24, 2022
Microsoft Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code by... High Unreviewed
CVE-2007-1751 was published May 1, 2022
A flaw was found in vDPA with VDUSE backend. There are currently no checks in VDUSE kernel driver... High Unreviewed
CVE-2022-2308 was published Sep 2, 2022
Use of uninitialized stack variables in the start_decoder function in stb_vorbis through 2019-03... High Unreviewed
CVE-2019-13220 was published May 24, 2022
In camera, there is a possible information disclosure due to uninitialized data. This could lead... Moderate Unreviewed
CVE-2022-20096 was published May 4, 2022
The function wav_format_write in libwav.c in libwav through 2017-04-20 has an Use of... High Unreviewed
CVE-2022-28488 was published May 5, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5, and 14.1.x... High Unreviewed
CVE-2022-26370 was published May 6, 2022
In mmc_blk_read_single of block.c, there is a possible way to read kernel heap memory due to... Moderate Unreviewed
CVE-2022-20008 was published May 11, 2022
In private_handle_t of mali_gralloc_buffer.h, there is a possible information disclosure due to... Moderate Unreviewed
CVE-2022-20119 was published May 11, 2022
An absence of variable initialization in ICCC TA prior to SMR Aug-2022 Release 1 allows local... Moderate Unreviewed
CVE-2022-33716 was published Aug 6, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database