GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
872 advisories
Filter by severity
Improper type usage in rusqlite
Critical
CVE-2020-35872
was published
for
rusqlite
(Rust)
Aug 25, 2021
Excessive memory usage in tokio-rustls
High
CVE-2020-35875
was published
for
tokio-rustls
(Rust)
Aug 25, 2021
Unsound casting in flatbuffers
Critical
CVE-2019-25004
was published
for
flatbuffers
(Rust)
Aug 25, 2021
libsecp256k1 contains side-channel timing attack
High
CVE-2019-25003
was published
for
libsecp256k1
(Rust)
Aug 25, 2021
Incorrect implementation in streebog
High
CVE-2019-25007
was published
for
streebog
(Rust)
Aug 25, 2021
Rust Failure Crate Vulnerable to Type confusion
Critical
CVE-2019-25010
was published
for
failure
(Rust)
Aug 25, 2021
Out of bounds access in lucet-runtime-internals
Critical
CVE-2020-35859
was published
for
lucet-runtime-internals
(Rust)
Aug 25, 2021
Stack consumption in trust-dns-server
High
CVE-2020-35857
was published
for
trust-dns-server
(Rust)
Aug 25, 2021
Array size is not checked in sized-chunks
High
CVE-2020-25792
was published
for
sized-chunks
(Rust)
Aug 25, 2021
Unaligned references in sized-chunks
High
CVE-2020-25796
was published
for
sized-chunks
(Rust)
Aug 25, 2021
Missing release of memory in sized-chunks
High
CVE-2020-25794
was published
for
sized-chunks
(Rust)
Aug 25, 2021
Incorrect Comparison in sodiumoxide
Critical
CVE-2019-25002
was published
for
sodiumoxide
(Rust)
Aug 25, 2021
Out of bounds write in serde_cbor
High
CVE-2019-25001
was published
for
serde_cbor
(Rust)
Aug 25, 2021
Incorrect implementation of the Streebog hash functions in streebog
High
CVE-2019-25006
was published
for
streebog
(Rust)
Aug 25, 2021
Use after free in portaudio-rs
Critical
CVE-2019-16881
was published
for
portaudio-rs
(Rust)
Aug 25, 2021
Null pointer deference in openssl-src
High
CVE-2020-1967
was published
for
openssl-src
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API