Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

224 advisories

Loading
In Mosquitto before 2.0.16, a memory leak occurs when clients send v5 CONNECT packets with a will... High Unreviewed
CVE-2023-3592 was published Oct 2, 2023
In canvas rendering, a compromised content process could have caused a surface to change... High Unreviewed
CVE-2023-5170 was published Sep 27, 2023
A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential... High Unreviewed
CVE-2023-5156 was published Sep 25, 2023
An issue in cimg.eu Cimg Library v2.9.3 allows an attacker to obtain sensitive information via a... High Unreviewed
CVE-2023-41484 was published Sep 20, 2023
The broker in Eclipse Mosquitto 1.3.2 through 2.x before 2.0.16 has a memory leak that can be... High Unreviewed
CVE-2023-28366 was published Sep 1, 2023
BT SDP dissector memory leak in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of... High Unreviewed
CVE-2023-4513 was published Aug 24, 2023
A memory leak in ImageMagick 7.0.10-45 and 6.9.11-22 allows remote attackers to perform a denial... High Unreviewed
CVE-2022-48541 was published Aug 22, 2023
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The... High Unreviewed
CVE-2023-32247 was published Jul 24, 2023
When UDP profile with idle timeout set to immediate or the value 0 is configured on a virtual... High Unreviewed
CVE-2023-29163 was published Jul 6, 2023
An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially... High Unreviewed
CVE-2022-4139 was published Jul 6, 2023
An out-of-bounds memory write flaw was found in the Linux kernel’s Kid-friendly Wired Controller... High Unreviewed
CVE-2022-3577 was published Jul 6, 2023
mp4v2 v2.1.3 was discovered to contain a memory leak via MP4File::ReadString() at mp4file_io.cpp High Unreviewed
CVE-2023-33718 was published May 31, 2023
Teeworlds v0.7.5 was discovered to contain memory leaks. High Unreviewed
CVE-2023-31517 was published May 23, 2023
An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the... High Unreviewed
CVE-2021-31240 was published May 9, 2023
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool. High Unreviewed
CVE-2023-21666 was published May 2, 2023
A Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon... High Unreviewed
CVE-2023-28982 was published Apr 18, 2023
Baidu braft 1.1.2 has a memory leak related to use of the new operator in example/atomic... High Unreviewed
CVE-2023-30637 was published Apr 14, 2023
On affected platforms running Arista EOS with SNMP configured, a specially crafted packet can... High Unreviewed
CVE-2023-24511 was published Apr 12, 2023
An issue was discovered in the Connected Vehicle Systems Alliance (COVESA; formerly GENIVI) dlt... High Unreviewed
CVE-2023-26257 was published Feb 27, 2023
In Softing uaToolkit Embedded before 1.41, a malformed CreateMonitoredItems request may cause a... High Unreviewed
CVE-2022-45920 was published Jan 26, 2023
GPAC version 2.2-rev0-gab012bbfb-master was discovered to contain a memory leak in... High Unreviewed
CVE-2023-23145 was published Jan 20, 2023
A Missing Release of Memory after Effective Lifetime vulnerability in the Juniper Networks Junos... High Unreviewed
CVE-2023-22410 was published Jan 13, 2023
A Missing Release of Memory after Effective Lifetime vulnerability in the Flow Processing Daemon ... High Unreviewed
CVE-2023-22417 was published Jan 13, 2023
A potential memory leak issue was discovered in SDL2 in GLES_CreateTexture() function in... High Unreviewed
CVE-2022-4743 was published Jan 12, 2023
An issue was discovered in ksmbd in the Linux kernel before 5.19.2. fs/ksmbd/smb2pdu.c omits a... High Unreviewed
CVE-2022-47941 was published Dec 23, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database