GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
155 advisories
Filter by severity
Mishandling of format strings in rusqlite
Critical
CVE-2020-35869
was published
for
rusqlite
(Rust)
Aug 25, 2021
move_elements can double-free objects on panic
Critical
CVE-2021-28031
was published
for
scratchpad
(Rust)
May 24, 2022
Use after free in portaudio-rs
Critical
CVE-2019-16881
was published
for
portaudio-rs
(Rust)
Aug 25, 2021
Incorrect check on buffer length in rand_core
Critical
CVE-2021-27378
was published
for
rand_core
(Rust)
Aug 25, 2021
Improper Input Validation in renderdoc
Critical
CVE-2019-16142
was published
for
renderdoc
(Rust)
Aug 25, 2021
Deserialization of Untrusted Data in rust-cpuid
Critical
CVE-2021-45687
was published
for
raw-cpuid
(Rust)
Jan 6, 2022
Improper type usage in rusqlite
Critical
CVE-2020-35872
was published
for
rusqlite
(Rust)
Aug 25, 2021
Use after free in nano_arena
Critical
CVE-2021-28032
was published
for
nano_arena
(Rust)
Aug 25, 2021
Buffer overflow and format vulnerabilities in ncurses
Critical
CVE-2019-15548
was published
for
ncurses
(Rust)
Aug 25, 2021
openssl-src heap memory corruption with RSA private key operation
Critical
CVE-2022-2274
was published
for
openssl-src
(Rust)
Jul 2, 2022
Drop of uninitialized memory in Ozone
Critical
CVE-2020-35878
was published
for
ozone
(Rust)
Aug 25, 2021
Use of Uninitialized Resource in messagepack-rs.
Critical
CVE-2021-45693
was published
for
messagepack-rs
(Rust)
Jan 6, 2022
Use of Uninitialized Resource in messagepack-rs.
Critical
CVE-2021-45692
was published
for
messagepack-rs
(Rust)
Jan 6, 2022
Use of Uninitialized Resource in messagepack-rs
Critical
CVE-2021-45691
was published
for
messagepack-rs
(Rust)
Jan 6, 2022
Use of Uninitialized Resource in messagepack-rs.
Critical
CVE-2021-45690
was published
for
messagepack-rs
(Rust)
Jan 6, 2022
Pointer dereference in nanorand
Critical
CVE-2021-45705
was published
for
nanorand
(Rust)
Jan 6, 2022
Incorrect reliance on Trait memory layout in mopa
Critical
CVE-2021-45695
was published
for
mopa
(Rust)
Jan 6, 2022
The `total_size` function for partial read the length of any `FixVec` is incorrect in molecule.
Critical
CVE-2021-45697
was published
for
molecule
(Rust)
Jan 6, 2022
nb-connect invalidly assumes the memory layout of std::net::SocketAddr
Critical
CVE-2021-27376
was published
for
nb-connect
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API