GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,173 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix out-of...
High
Unreviewed
CVE-2024-46725
was published
Sep 18, 2024
In ppmp_unprotect_buf of drm/code/drm_fw.c, there is a possible memory corruption due to a logic...
High
Unreviewed
CVE-2024-44093
was published
Sep 13, 2024
In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible memory corruption due to improper...
High
Unreviewed
CVE-2024-44094
was published
Sep 13, 2024
In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible corrupt memory due to a logic...
High
Unreviewed
CVE-2024-44095
was published
Sep 13, 2024
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-43760
was published
Sep 13, 2024
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-45108
was published
Sep 13, 2024
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-45109
was published
Sep 13, 2024
Premiere Pro versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-39384
was published
Sep 13, 2024
After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-41859
was published
Sep 13, 2024
After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-39381
was published
Sep 13, 2024
Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-39377
was published
Sep 13, 2024
An issue was discovered in WibuKey64.sys in WIBU-SYSTEMS WibuKey before v6.70 and fixed in v.6.70...
High
Unreviewed
CVE-2024-45181
was published
Sep 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
s390/dasd: fix error...
High
Unreviewed
CVE-2024-45026
was published
Sep 11, 2024
In the Linux kernel, the following vulnerability has been resolved:
md/raid1: Fix data...
High
Unreviewed
CVE-2024-45023
was published
Sep 11, 2024
Audition versions 24.4.1, 23.6.6 and earlier are affected by an out-of-bounds write vulnerability...
High
Unreviewed
CVE-2024-39378
was published
Sep 11, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker...
High
Unreviewed
CVE-2024-8636
was published
Sep 11, 2024
D-Link DI-8100 v16.07.26A1 has a stack overflow vulnerability in the dbsrv_asp function.
High
Unreviewed
CVE-2024-44375
was published
Sep 9, 2024
An insufficient boundary validation in the USB code could lead to an out-of-bounds write on the...
High
Unreviewed
CVE-2024-32668
was published
Sep 5, 2024
Heap-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows local attackers...
High
Unreviewed
CVE-2024-34660
was published
Sep 4, 2024
Stack-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows remote...
High
Unreviewed
CVE-2024-34657
was published
Sep 4, 2024
Out of bounds write in V8 in Google Chrome prior to 128.0.6613.119 allowed a remote attacker to...
High
Unreviewed
CVE-2024-7970
was published
Sep 4, 2024
Memory corruption when Alternative Frequency offset value is set to 255.
High
Unreviewed
CVE-2024-33042
was published
Sep 2, 2024
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
High
Unreviewed
CVE-2024-33045
was published
Sep 2, 2024
Memory corruption when user provides data for FM HCI command control operations.
High
Unreviewed
CVE-2024-33052
was published
Sep 2, 2024
ProTip!
Advisories are also available from the
GraphQL API