Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

1,350 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: tls: fix race between async... Moderate Unreviewed
CVE-2024-26583 was published Feb 21, 2024
Race condition in Endorsements Low
CVE-2023-47634 was published for decidim (RubyGems) Feb 20, 2024
microstudi alecslupu
andreslucena
PX4 Autopilot 1.14 and earlier, due to the lack of synchronization mechanism for loading geofence... Moderate Unreviewed
CVE-2024-24254 was published Feb 7, 2024
A Race Condition discovered in geofence.cpp and mission_feasibility_checker.cpp in PX4 Autopilot... Moderate Unreviewed
CVE-2024-24255 was published Feb 7, 2024
A race condition was found in the Linux kernel's bluetooth device driver in {min,max... Moderate Unreviewed
CVE-2024-24860 was published Feb 5, 2024
A race condition was found in the Linux kernel's media/xc4000 device driver in xc4000... Low Unreviewed
CVE-2024-24861 was published Feb 5, 2024
A race condition was found in the Linux kernel's net/bluetooth device driver in conn_info_{min... Moderate Unreviewed
CVE-2024-24857 was published Feb 5, 2024
A race condition was found in the Linux kernel's net/bluetooth in {conn,adv}_{min,max... Moderate Unreviewed
CVE-2024-24858 was published Feb 5, 2024
A race condition was found in the Linux kernel's net/bluetooth in sniff_{min,max}_interval_set()... Moderate Unreviewed
CVE-2024-24859 was published Feb 5, 2024
A race condition was found in the Linux kernel's media/dvb-core in dvbdmx_write() function. This... Moderate Unreviewed
CVE-2024-24864 was published Feb 5, 2024
A race condition was found in the Linux kernel's sound/hda device driver in snd_hdac_regmap_sync... Moderate Unreviewed
CVE-2024-23196 was published Feb 5, 2024
A race condition was found in the Linux kernel's drm/exynos device driver in... Moderate Unreviewed
CVE-2024-22386 was published Feb 5, 2024
A race condition was found in the Linux kernel's scsi device driver in lpfc_unregister_fcf_rescan... Moderate Unreviewed
CVE-2024-24855 was published Feb 5, 2024
In mp3 decoder, there is a possible out of bounds write due to a race condition. This could lead... High Unreviewed
CVE-2024-20007 was published Feb 5, 2024
BuildKit vulnerable to possible race condition with accessing subpaths from cache mounts High
CVE-2024-23651 was published for github.com/moby/buildkit (Go) Jan 31, 2024
rmcnamara-snyk
A race condition was found in the Linux Kernel. Under certain conditions, an unauthenticated... High Unreviewed
CVE-2023-6200 was published Jan 28, 2024
Using a javascript: URI with a setTimeout race condition, an attacker can execute unauthorized... High Unreviewed
CVE-2024-0605 was published Jan 22, 2024
A use-after-free flaw was found in the Linux Kernel due to a race problem in the unix garbage... High Unreviewed
CVE-2023-6531 was published Jan 21, 2024
A Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')... Moderate Unreviewed
CVE-2024-21601 was published Jan 12, 2024
A race condition was addressed with improved state handling. This issue is fixed in macOS Big Sur... High Unreviewed
CVE-2023-42832 was published Jan 11, 2024
Apache Answer Race Condition vulnerability Low
CVE-2023-49619 was published for github.com/apache/incubator-answer (Go) Jan 10, 2024
Windows Hyper-V Remote Code Execution Vulnerability High Unreviewed
CVE-2024-20700 was published Jan 9, 2024
Remote Desktop Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21307 was published Jan 9, 2024
snapd Race Condition vulnerability High
CVE-2022-3328 was published for github.com/snapcore/snapd (Go) Jan 8, 2024
Duplicate Advisory: Race Condition leading to logging errors Low
GHSA-v444-jggx-6v7f was published for audited (RubyGems) Jan 4, 2024 withdrawn
ProTip! Advisories are also available from the GraphQL API