GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
348 advisories
Filter by severity
Slock<T> allows sending non-Send types across thread boundaries
High
GHSA-83r8-p8v6-6gfm
was published
for
slock
(Rust)
Aug 25, 2021
SyncChannel<T> can move 'T: !Send' to other threads
High
GHSA-8892-84wf-cg8f
was published
for
signal-simple
(Rust)
Aug 25, 2021
Mishandling of format strings in ncurses
High
CVE-2019-15547
was published
for
ncurses
(Rust)
Aug 25, 2021
Format string vulnerabilities in pancurses
High
CVE-2019-15546
was published
for
pancurses
(Rust)
Aug 25, 2021
Uninitialized memory use in generator
High
CVE-2019-16144
was published
for
generator
(Rust)
Aug 25, 2021
Links in archive can create arbitrary directories
High
CVE-2021-38511
was published
for
tar
(Rust)
Aug 25, 2021
HTTP Request Smuggling in actix-http
High
CVE-2021-38512
was published
for
actix-http
(Rust)
Aug 25, 2021
Data race in ruspiro-singleton
High
CVE-2020-36435
was published
for
ruspiro-singleton
(Rust)
Aug 25, 2021
Unaligned memory allocation in chunky
High
CVE-2020-36433
was published
for
chunky
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API