Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

4,935 advisories

Loading
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-20091 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-20081 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-20626 was published Mar 4, 2025
Memory corruption while handling multuple IOCTL calls from userspace for remote invocation. High Unreviewed
CVE-2024-45580 was published Mar 3, 2025
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node. High Unreviewed
CVE-2024-43059 was published Mar 3, 2025
Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and... High Unreviewed
CVE-2024-43061 was published Mar 3, 2025
Memory corruption caused by missing locks and checks on the DMA fence and improper synchronization. High Unreviewed
CVE-2024-43062 was published Mar 3, 2025
Memory corruption while calling the NPU driver APIs concurrently. High Unreviewed
CVE-2025-21424 was published Mar 3, 2025
Memory corruption may occur while accessing a variable during extended back to back tests. High Unreviewed
CVE-2024-53023 was published Mar 3, 2025
Memory corruption while processing command in Glink linux. High Unreviewed
CVE-2024-43057 was published Mar 3, 2025
A DMA reentrancy issue was found in the NVM Express Controller (NVME) emulation in QEMU. This CVE... High Unreviewed
CVE-2021-3929 was published Aug 26, 2022
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix implicit ODP... High Unreviewed
CVE-2025-21714 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: HID: corsair-void: Add... High Unreviewed
CVE-2025-21797 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix race... High Unreviewed
CVE-2025-21729 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, change error... High Unreviewed
CVE-2025-21751 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: pps: Fix a use-after-free ... High Unreviewed
CVE-2024-57979 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: nilfs2: do not force clear... High Unreviewed
CVE-2025-21722 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix use... High Unreviewed
CVE-2025-21739 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: vsock: Keep the binding... High Unreviewed
CVE-2025-21756 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free... High Unreviewed
CVE-2025-21753 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: workqueue: Put the pwq after... High Unreviewed
CVE-2025-21786 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix possible use... Moderate Unreviewed
CVE-2024-26735 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: media: pci: cx23885: Fix the... High Unreviewed
CVE-2022-49524 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: cgroup: Use separate src/dst... High Unreviewed
CVE-2022-49647 was published Feb 27, 2025
In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix use-after... High Unreviewed
CVE-2022-49667 was published Feb 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database