Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,170
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
832
Swift
35
Unreviewed advisories
All unreviewed
5,000+

122 advisories

Loading
Use of an uninitialized value in Skia in Google Chrome prior to 60.0.3112.78 for Mac, Windows,... Moderate Unreviewed
CVE-2017-5102 was published May 13, 2022
An exploitable memory disclosure vulnerability exists in the 0x222000 IOCTL handler functionality... Moderate Unreviewed
CVE-2018-3970 was published May 13, 2022
An exploitable kernel memory disclosure vulnerability exists in the 0x8200E804 IOCTL handler... Moderate Unreviewed
CVE-2018-3989 was published May 13, 2022
In mmc_blk_read_single of block.c, there is a possible way to read kernel heap memory due to... Moderate Unreviewed
CVE-2022-20008 was published May 11, 2022
In private_handle_t of mali_gralloc_buffer.h, there is a possible information disclosure due to... Moderate Unreviewed
CVE-2022-20119 was published May 11, 2022
In camera, there is a possible information disclosure due to uninitialized data. This could lead... Moderate Unreviewed
CVE-2022-20096 was published May 4, 2022
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize... Moderate Unreviewed
CVE-2009-0949 was published May 2, 2022
sockethandler.cpp in HTTP Antivirus Proxy (HAVP) 0.88 allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2008-3688 was published May 2, 2022
Mozilla Firefox 3 before 3.0.1 on Mac OS X allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2008-2934 was published May 1, 2022
The Kerberos 4 support in KDC in MIT Kerberos 5 (krb5kdc) does not properly clear the unused... Moderate Unreviewed
CVE-2008-0063 was published May 1, 2022
A kernel information leak flaw was identified in the scsi_ioctl function in drivers/scsi... Moderate Unreviewed
CVE-2022-0494 was published Mar 26, 2022
An information disclosure vulnerability exists in the HTTP Server /ping.html functionality of... Moderate Unreviewed
CVE-2021-21966 was published Feb 17, 2022
In code generated by aidl_const_expressions.cpp, there is a possible out of bounds read due to... Moderate Unreviewed
CVE-2021-39671 was published Feb 12, 2022
In sec_SHA256_Transform of sha256_core.c, there is a possible way to read heap data due to... Moderate Unreviewed
CVE-2021-39680 was published Jan 15, 2022
In seninf driver, there is a possible information disclosure due to uninitialized data. This... Moderate Unreviewed
CVE-2022-20018 was published Jan 5, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization... Moderate Unreviewed
CVE-2021-44003 was published Dec 15, 2021
A use of uninitialized value vulnerability in Tensorflow Moderate
CVE-2021-41225 was published for tensorflow (pip) Nov 10, 2021
Compiler optimisation leads to SEGFAULT Moderate
GHSA-r6ff-2q3c-v3pv was published for pnet (Rust) Aug 25, 2021
Uninitialized memory exposure in claxon Moderate
CVE-2018-20992 was published for claxon (Rust) Aug 25, 2021
Use of unitialized value in TFLite Moderate
CVE-2021-37682 was published for tensorflow (pip) Aug 25, 2021
Heap out of bounds access in MakeEdge in TensorFlow Moderate
CVE-2020-26271 was published for tensorflow (pip) Dec 10, 2020
Uninitialized memory access in TensorFlow Moderate
CVE-2020-26266 was published for tensorflow (pip) Dec 10, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database