Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

17 advisories

Loading
Apache CXF allows unrestricted memory consumption in CXF HTTP clients Low
CVE-2024-41172 was published for org.apache.cxf:cxf-rt-transports-http (Maven) Jul 19, 2024
ImageMagick before 6.9.12-91 allows attackers to cause a denial of service (memory consumption)... Low Unreviewed
CVE-2023-39978 was published Aug 8, 2023
A vulnerability was found in the pthread_create() function in libcap. This issue may allow a... Low Unreviewed
CVE-2023-2602 was published Jun 6, 2023
yasm v1.3.0 was discovered to contain a memory leak via the function yasm_intnum_copy at /libyasm... Low Unreviewed
CVE-2023-31975 was published May 9, 2023
A vulnerability was found in Linux Kernel. It has been declared as problematic. This... Low Unreviewed
CVE-2022-3629 was published Oct 21, 2022
A vulnerability was found in Linux Kernel and classified as problematic. Affected by this issue... Low Unreviewed
CVE-2022-3624 was published Oct 21, 2022
A vulnerability classified as problematic has been found in Linux Kernel. Affected is the... Low Unreviewed
CVE-2022-3633 was published Oct 21, 2022
A vulnerability was found in ImageMagick-7.0.11-5, where executing a crafted file with the... Low Unreviewed
CVE-2021-3574 was published Aug 27, 2022
In whoopsie, parse_report() from whoopsie.c allows a local attacker to cause a denial of service... Low Unreviewed
CVE-2020-11937 was published May 24, 2022
On Juniper Networks MX series, receipt of a stream of specific Layer 2 frames may cause a memory... Low Unreviewed
CVE-2020-1651 was published May 24, 2022
In the Linux kernel through 5.7.6, usbtest_disconnect in drivers/usb/misc/usbtest.c has a memory... Low Unreviewed
CVE-2020-15393 was published May 24, 2022
An issue was discovered in the Linux kernel before 5.6. svm_cpu_uninit in arch/x86/kvm/svm.c has... Low Unreviewed
CVE-2020-12768 was published May 24, 2022
gss_mech_free in net/sunrpc/auth_gss/gss_mech_switch.c in the rpcsec_gss_krb5 implementation in... Low Unreviewed
CVE-2020-12656 was published May 24, 2022
The kernel memory usage represented as "temp" via 'show system virtual-memory' may constantly... Low Unreviewed
CVE-2020-1625 was published May 24, 2022
A memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise... Low Unreviewed
CVE-2019-3815 was published May 13, 2022
The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when... Low Unreviewed
CVE-2005-3181 was published May 1, 2022
Memory leak in the request_key_auth_destroy function in request_key_auth in Linux kernel 2.6.10... Low Unreviewed
CVE-2005-3119 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API