Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

672 advisories

Loading
Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later allows physically proximate... Moderate Unreviewed
CVE-2010-4012 was published May 17, 2022
Race condition in firmware for some Intel(R) Optane(TM) SSD, Intel(R) Optane(TM) SSD DC and Intel... Moderate Unreviewed
CVE-2021-33075 was published May 13, 2022
A race condition is present in the crash generation server used to generate data for the crash... Moderate Unreviewed
CVE-2019-9818 was published May 24, 2022
In the Android kernel in the FingerTipS touchscreen driver there is a possible memory corruption... Moderate Unreviewed
CVE-2019-9450 was published May 24, 2022
Race condition within a thread in firmware for some Intel(R) Optane(TM) SSD and Intel(R) SSD DC... Moderate Unreviewed
CVE-2021-33078 was published May 13, 2022
In the Android kernel in the video driver there is a use after free due to a race condition. This... Moderate Unreviewed
CVE-2019-9458 was published May 24, 2022
A race condition which may occur when discarding malformed packets can result in BIND exiting due... Moderate Unreviewed
CVE-2019-6471 was published May 24, 2022
KVM in the Linux kernel on Power8 processors has a conflicting use of HSTATE_HOST_R1 to store r1... Moderate Unreviewed
CVE-2020-8834 was published May 24, 2022
A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to... Moderate Unreviewed
CVE-2021-23133 was published May 24, 2022
In System UI, there is a possible bypass of user's consent for access to sensor data due to a... Moderate Unreviewed
CVE-2019-2219 was published May 24, 2022
A race condition was found in the mkhomedir tool shipped with the oddjob package in versions... Moderate Unreviewed
CVE-2020-10737 was published May 24, 2022
Under certain conditions, when retrieving a document from a DocShell in the antitracking code, a... Moderate Unreviewed
CVE-2019-17011 was published May 24, 2022
Under certain conditions, when checking the Resist Fingerprinting preference during device... Moderate Unreviewed
CVE-2019-17010 was published May 24, 2022
init_tmp in TeeJee.FileSystem.vala in Timeshift before 20.03 unsafely reuses a preexisting... Moderate Unreviewed
CVE-2020-10174 was published May 24, 2022
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in pyftpdlib Moderate
CVE-2009-5011 was published for pyftpdlib (pip) May 2, 2022
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in pyftpdlib Moderate
CVE-2009-5010 was published for pyftpdlib (pip) May 2, 2022
Concurrent Execution using Shared Resource with Improper Synchronization in pyftpdlib Moderate
CVE-2010-3494 was published for pyftpdlib (pip) May 17, 2022
Razer Chroma SDK Rest Server through 3.12.17 allows remote attackers to execute arbitrary... Moderate Unreviewed
CVE-2020-16602 was published May 24, 2022
A race condition vulnerability on Juniper Network Junos OS devices may cause the routing protocol... Moderate Unreviewed
CVE-2020-1629 was published May 24, 2022
Go before 1.13.13 and 1.14.x before 1.14.5 has a data race in some net/http servers, as... Moderate Unreviewed
CVE-2020-15586 was published May 24, 2022
An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of... Moderate Unreviewed
CVE-2020-11739 was published May 24, 2022
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows local privilege escalation via... Moderate Unreviewed
CVE-2020-9475 was published May 24, 2022
An issue was discovered in OpenVPN 2.4.x before 2.4.9. An attacker can inject a data channel v2 ... Moderate Unreviewed
CVE-2020-11810 was published May 24, 2022
By misusing a race in our notification code, an attacker could have forcefully hidden the... Moderate Unreviewed
CVE-2021-43538 was published Dec 9, 2021
A race condition when running shutdown code for Web Worker led to a use-after-free vulnerability.... Moderate Unreviewed
CVE-2020-12387 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API