Skip to content

Pull requests: github/advisory-database

New pull request New
75 Open 6,631 Closed
75 Open 6,631 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-j39c-c8hj-x4j3] Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat
#7618 opened May 8, 2026 by hara-satoshi-ymr Loading…
1
[GHSA-q3mw-pvr8-9ggc] Apache Tomcat Open Redirect vulnerability
#7617 opened May 8, 2026 by hara-satoshi-ymr Loading…
1
[GHSA-rwm7-x88c-3g2p] Netty epoll transport denial of service via RST on half-closed TCP connection
#7616 opened May 8, 2026 by normanmaurer Loading…
1
[GHSA-ffh4-j6h5-pg66] VM2 Has a WASM Sandbox Escape (Node 25 only)
#7613 opened May 7, 2026 by Wenxin-Jiang Loading…
2
[NEW] CVE-2026-38359: xlsx ZIP Header Memory Allocation DoS
#7612 opened May 7, 2026 by tldhs1144 Loading…
[NEW] CVE-2026-38358: xlsx unescapexml() Unbounded Recursion DoS
#7611 opened May 7, 2026 by tldhs1144 Loading…
[NEW] CVE-2026-38357: msgpack-lite Unbounded Recursion DoS
#7610 opened May 7, 2026 by tldhs1144 Loading…
[GHSA-rq8g-5pc5-wrhr] Insufficient Entropy in cryptiles
#7609 opened May 7, 2026 by KleRkUS Loading…
[GHSA-rwm7-x88c-3g2p] Netty epoll transport denial of service via RST on half-closed TCP connection
#7608 opened May 7, 2026 by dzaisban Loading…
1
[GHSA-vpq2-c234-7xj6] @tootallnate/once vulnerable to Incorrect Control Flow Scoping: add 2.0.1 as fixed version
#7607 opened May 7, 2026 by mpsijm Loading…
[GHSA-q7c8-gfjh-8v4p] An issue was discovered in Free5gc NRF 1.4.0. In the...
#7606 opened May 7, 2026 by p0sql Loading…
[GHSA-56w8-48fp-6mgv] Potential denial of service in golang.org/x/crypto/ssh/agent
#7605 opened May 6, 2026 by augustocesarperin Loading…
Add CVSS score and improve GHSA-xgj4-2hrf-j4xg (survey-creator)
#7604 opened May 6, 2026 by TheeCryptoChad Loading…
Add CVSS score and improve GHSA-jjff-q3q4-5hh8 (@andrei-tatar/nora-firebase-common)
#7603 opened May 6, 2026 by TheeCryptoChad Loading…
Add CVSS score and improve GHSA-9hfw-cvf4-5x25 (@wangeditor/editor)
#7602 opened May 6, 2026 by TheeCryptoChad Loading…
Add CVSS score and analyst credit for GHSA-mj6p-3pc9-wf5m (proxy DoS)
#7601 opened May 6, 2026 by TheeCryptoChad Loading…
[GHSA-rmx9-2pp3-xhcr] Add multi-branch patch ranges for Tekton Pipelines
#7600 opened May 6, 2026 by waveywaves Loading…
[GHSA-m2cx-gpqf-qf74] Add multi-branch patch ranges for Tekton Pipelines
#7599 opened May 6, 2026 by waveywaves Loading…
[GHSA-rx35-6rhx-7858] Add multi-branch patch ranges for Tekton Pipelines
#7598 opened May 6, 2026 by waveywaves Loading…
1
[GHSA-94jr-7pqp-xhcq] Add multi-branch patch ranges for Tekton Pipelines
#7597 opened May 6, 2026 by waveywaves Loading…
[GHSA-wjxp-xrpv-xpff] Add multi-branch patch ranges for Tekton Pipelines
#7596 opened May 6, 2026 by waveywaves Loading…
[GHSA-37w4-hwhx-4rc4] JupyterHub has an Extension Manager API/GUI Policy Discrepancy, allowing 3rd party (malicious) extensions install via POST request
#7593 opened May 6, 2026 by krassowski Loading…
6
[GHSA-jg2m-9x48-3gvj] The fix for CVE-2025-27636 added setLowerCase(true) to...
#7592 opened May 6, 2026 by kmagdziarz Loading…
8
[GHSA-w5hq-g745-h8pq] uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided
#7591 opened May 5, 2026 by jwasnoggin Loading…
1
[GHSA-8fj7-8h3w-xwfm] Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames...
#7589 opened May 5, 2026 by kbsteere Loading…
ProTip! Type g p on any issue or pull request to go back to the pull request listing page.