Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,411
Erlang
33
GitHub Actions
22
Go
2,147
Maven
5,000+
npm
3,808
NuGet
687
pip
3,482
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+

248 advisories

Loading
An out-of-bounds memory write flaw was found in the Linux kernel’s Kid-friendly Wired Controller... High Unreviewed
CVE-2022-3577 was published Jul 6, 2023
CometBFT may duplicate transactions in the mempool's data structures High
CVE-2023-34451 was published for github.com/cometbft/cometbft (Go) Jul 5, 2023
otrack
mp4v2 v2.1.3 was discovered to contain a memory leak via MP4File::ReadString() at mp4file_io.cpp High Unreviewed
CVE-2023-33718 was published May 31, 2023
Teeworlds v0.7.5 was discovered to contain memory leaks. High Unreviewed
CVE-2023-31517 was published May 23, 2023
An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the... High Unreviewed
CVE-2021-31240 was published May 9, 2023
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool. High Unreviewed
CVE-2023-21666 was published May 2, 2023
A Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon... High Unreviewed
CVE-2023-28982 was published Apr 18, 2023
Baidu braft 1.1.2 has a memory leak related to use of the new operator in example/atomic... High Unreviewed
CVE-2023-30637 was published Apr 14, 2023
On affected platforms running Arista EOS with SNMP configured, a specially crafted packet can... High Unreviewed
CVE-2023-24511 was published Apr 12, 2023
An issue was discovered in the Connected Vehicle Systems Alliance (COVESA; formerly GENIVI) dlt... High Unreviewed
CVE-2023-26257 was published Feb 27, 2023
In Softing uaToolkit Embedded before 1.41, a malformed CreateMonitoredItems request may cause a... High Unreviewed
CVE-2022-45920 was published Jan 26, 2023
GPAC version 2.2-rev0-gab012bbfb-master was discovered to contain a memory leak in... High Unreviewed
CVE-2023-23145 was published Jan 20, 2023
A Missing Release of Memory after Effective Lifetime vulnerability in the Flow Processing Daemon ... High Unreviewed
CVE-2023-22417 was published Jan 13, 2023
A Missing Release of Memory after Effective Lifetime vulnerability in the Juniper Networks Junos... High Unreviewed
CVE-2023-22410 was published Jan 13, 2023
A potential memory leak issue was discovered in SDL2 in GLES_CreateTexture() function in... High Unreviewed
CVE-2022-4743 was published Jan 12, 2023
An issue was discovered in ksmbd in the Linux kernel before 5.19.2. fs/ksmbd/smb2pdu.c omits a... High Unreviewed
CVE-2022-47941 was published Dec 23, 2022
DCMTK v3.6.7 was discovered to contain a memory leak via the T_ASC_Association object. High Unreviewed
CVE-2022-43272 was published Dec 2, 2022
mod_radius in ProFTPD before 1.3.7c allows memory disclosure to RADIUS servers because it copies... High Unreviewed
CVE-2021-46854 was published Nov 23, 2022
open5gs v2.4.11 was discovered to contain a memory leak in the component src/upf/pfcp-path.c.... High Unreviewed
CVE-2022-43221 was published Nov 1, 2022
open5gs v2.4.11 was discovered to contain a memory leak in the component ngap-handler.c. This... High Unreviewed
CVE-2022-43223 was published Nov 1, 2022
open5gs v2.4.11 was discovered to contain a memory leak in the component src/smf/pfcp-path.c.... High Unreviewed
CVE-2022-43222 was published Nov 1, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to... High Unreviewed
CVE-2022-42311 was published Nov 1, 2022
Xenstore: Guests can cause Xenstore to not free temporary memory When working on a request of a... High Unreviewed
CVE-2022-42319 was published Nov 1, 2022
A vulnerability was found in Nginx and classified as problematic. This issue affects some unknown... High Unreviewed
CVE-2022-3638 was published Oct 21, 2022
In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x... High Unreviewed
CVE-2022-41832 was published Oct 20, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database