GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
10,622 advisories
Filter by severity
The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27,...
Low
Unreviewed
CVE-2004-1073
was published
Apr 29, 2022
The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly...
Low
Unreviewed
CVE-2004-1081
was published
Apr 29, 2022
The binfmt functionality in the Linux kernel, when "memory overcommit" is enabled, allows local...
Low
Unreviewed
CVE-2004-1074
was published
Apr 29, 2022
Race condition in SELinux 2.6.x through 2.6.9 allows local users to cause a denial of service ...
Low
Unreviewed
CVE-2004-1069
was published
Apr 29, 2022
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to gain...
Low
Unreviewed
CVE-2004-1030
was published
Apr 29, 2022
Kerio Winroute Firewall before 6.0.9, ServerFirewall before 1.0.1, and MailServer before 6.0.5,...
Low
Unreviewed
CVE-2004-1023
was published
Apr 29, 2022
Kerio Winroute Firewall before 6.0.7, ServerFirewall before 1.0.1, and MailServer before 6.0.5...
Low
Unreviewed
CVE-2004-1022
was published
Apr 29, 2022
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to delete...
Low
Unreviewed
CVE-2004-1032
was published
Apr 29, 2022
Fcron 2.0.1, 2.9.4, and possibly earlier versions leak file descriptors of open files, which...
Low
Unreviewed
CVE-2004-1033
was published
Apr 29, 2022
The scm_send function in the scm layer for Linux kernel 2.4.x up to 2.4.28, and 2.6.x up to 2.6.9...
Low
Unreviewed
CVE-2004-1016
was published
Apr 29, 2022
main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows...
Low
Unreviewed
CVE-2004-0996
was published
Apr 29, 2022
zgv 5.5.3 allows remote attackers to cause a denial of service (application crash via...
Low
Unreviewed
CVE-2004-0999
was published
Apr 29, 2022
lintian 1.23 and earlier removes the working directory even if it was not created by lintian,...
Low
Unreviewed
CVE-2004-1000
was published
Apr 29, 2022
The netatalk package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating...
Low
Unreviewed
CVE-2004-0974
was published
Apr 29, 2022
The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and other...
Low
Unreviewed
CVE-2004-0975
was published
Apr 29, 2022
The krb5-send-pr script in the kerberos5 (krb5) package in Trustix Secure Linux 1.5 through 2.1,...
Low
Unreviewed
CVE-2004-0971
was published
Apr 29, 2022
Multiple scripts in the perl package in Trustix Secure Linux 1.5 through 2.1 and other operating...
Low
Unreviewed
CVE-2004-0976
was published
Apr 29, 2022
The groffer script in the Groff package 1.18 and later versions, as used in Trustix Secure Linux...
Low
Unreviewed
CVE-2004-0969
was published
Apr 29, 2022
The catchsegv script in glibc 2.3.2 and earlier allows local users to overwrite files via a...
Low
Unreviewed
CVE-2004-0968
was published
Apr 29, 2022
The lvmcreate_initrd script in the lvm package in Trustix Secure Linux 1.5 through 2.1, and...
Low
Unreviewed
CVE-2004-0972
was published
Apr 29, 2022
The (1) gzexe, (2) zdiff, and (3) znew scripts in the gzip package, as used by other packages...
Low
Unreviewed
CVE-2004-0970
was published
Apr 29, 2022
The make_oidjoins_check script in PostgreSQL 7.4.5 and earlier allows local users to overwrite...
Low
Unreviewed
CVE-2004-0977
was published
Apr 29, 2022
rfc1867.c in PHP before 5.0.2 allows local users to upload files to arbitrary locations via a PHP...
Low
Unreviewed
CVE-2004-0959
was published
Apr 29, 2022
The (1) autopoint and (2) gettextize scripts in the GNU gettext package 1.14 and later versions,...
Low
Unreviewed
CVE-2004-0966
was published
Apr 29, 2022
CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file...
Low
Unreviewed
CVE-2004-0923
was published
Apr 29, 2022
ProTip!
Advisories are also available from the
GraphQL API