GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
344 advisories
Filter by severity
async-graphql / async-graphql - @DOS GraphQL Nested Fragments overflow
High
GHSA-xq3c-8gqm-v648
was published
for
async-graphql
(Rust)
Jul 29, 2022
oqs's Post-Quantum Signature scheme Rainbow level I parametersets broken
High
GHSA-h864-m8vm-3xvj
was published
for
oqs
(Rust)
Aug 18, 2022
`os_socketaddr` invalidly assumes the memory layout of std::net::SocketAddr
High
GHSA-c439-chv8-8g2j
was published
for
os_socketaddr
(Rust)
Sep 2, 2022
ckb type_id script resume may randomly fail
High
GHSA-mcmr-49x3-4jqm
was published
for
ckb
(Rust)
Nov 2, 2022
DoS Vulnerability from Upstream Actix Web Issues
High
GHSA-gjrj-9rj4-pgwx
was published
for
perseus-actix-web
(Rust)
Dec 15, 2021
Use after free in libpulse-binding
High
GHSA-ghpq-vjxw-ch5w
was published
for
libpulse-binding
(Rust)
Aug 25, 2021
fake-static allows converting any reference into a `'static` reference
High
GHSA-8xw8-mmqv-frqq
was published
for
fake-static
(Rust)
Aug 25, 2021
Free of uninitialized memory in autorand
High
CVE-2020-36210
was published
for
autorand
(Rust)
Aug 25, 2021
Use of Uninitialized Resource in truetype
High
CVE-2021-28030
was published
for
truetype
(Rust)
Aug 25, 2021
Miner fails to get block template when a cell used as a cell dep has been destroyed.
High
GHSA-v666-6w97-pcwm
was published
for
ckb
(Rust)
Aug 25, 2021
Double free in basic_dsp_matrix
High
CVE-2021-25906
was published
for
basic_dsp_matrix
(Rust)
Aug 25, 2021
Array size is not checked in sized-chunks
High
CVE-2020-25791
was published
for
sized-chunks
(Rust)
Aug 25, 2021
Missing release of memory in sized-chunks
High
CVE-2020-25794
was published
for
sized-chunks
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API