Skip to content

Pull requests: github/advisory-database

New pull request New
73 Open 6,627 Closed
73 Open 6,627 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[NEW] CVE-2026-38359: xlsx ZIP Header Memory Allocation DoS
#7612 opened May 7, 2026 by tldhs1144 Loading…
[NEW] CVE-2026-38358: xlsx unescapexml() Unbounded Recursion DoS
#7611 opened May 7, 2026 by tldhs1144 Loading…
[NEW] CVE-2026-38357: msgpack-lite Unbounded Recursion DoS
#7610 opened May 7, 2026 by tldhs1144 Loading…
[GHSA-rq8g-5pc5-wrhr] Insufficient Entropy in cryptiles
#7609 opened May 7, 2026 by KleRkUS Loading…
[GHSA-rwm7-x88c-3g2p] Netty epoll transport denial of service via RST on half-closed TCP connection
#7608 opened May 7, 2026 by dzaisban Loading…
1
[GHSA-vpq2-c234-7xj6] @tootallnate/once vulnerable to Incorrect Control Flow Scoping: add 2.0.1 as fixed version
#7607 opened May 7, 2026 by mpsijm Loading…
[GHSA-q7c8-gfjh-8v4p] An issue was discovered in Free5gc NRF 1.4.0. In the...
#7606 opened May 7, 2026 by p0sql Loading…
[GHSA-56w8-48fp-6mgv] Potential denial of service in golang.org/x/crypto/ssh/agent
#7605 opened May 6, 2026 by augustocesarperin Loading…
Add CVSS score and improve GHSA-xgj4-2hrf-j4xg (survey-creator)
#7604 opened May 6, 2026 by TheeCryptoChad Loading…
Add CVSS score and improve GHSA-jjff-q3q4-5hh8 (@andrei-tatar/nora-firebase-common)
#7603 opened May 6, 2026 by TheeCryptoChad Loading…
Add CVSS score and improve GHSA-9hfw-cvf4-5x25 (@wangeditor/editor)
#7602 opened May 6, 2026 by TheeCryptoChad Loading…
Add CVSS score and analyst credit for GHSA-mj6p-3pc9-wf5m (proxy DoS)
#7601 opened May 6, 2026 by TheeCryptoChad Loading…
[GHSA-rmx9-2pp3-xhcr] Add multi-branch patch ranges for Tekton Pipelines
#7600 opened May 6, 2026 by waveywaves Loading…
[GHSA-m2cx-gpqf-qf74] Add multi-branch patch ranges for Tekton Pipelines
#7599 opened May 6, 2026 by waveywaves Loading…
[GHSA-rx35-6rhx-7858] Add multi-branch patch ranges for Tekton Pipelines
#7598 opened May 6, 2026 by waveywaves Loading…
1
[GHSA-94jr-7pqp-xhcq] Add multi-branch patch ranges for Tekton Pipelines
#7597 opened May 6, 2026 by waveywaves Loading…
[GHSA-wjxp-xrpv-xpff] Add multi-branch patch ranges for Tekton Pipelines
#7596 opened May 6, 2026 by waveywaves Loading…
[GHSA-37w4-hwhx-4rc4] JupyterHub has an Extension Manager API/GUI Policy Discrepancy, allowing 3rd party (malicious) extensions install via POST request
#7593 opened May 6, 2026 by krassowski Loading…
6
[GHSA-jg2m-9x48-3gvj] The fix for CVE-2025-27636 added setLowerCase(true) to...
#7592 opened May 6, 2026 by kmagdziarz Loading…
8
[GHSA-w5hq-g745-h8pq] uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided
#7591 opened May 5, 2026 by jwasnoggin Loading…
1
[GHSA-8fj7-8h3w-xwfm] Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames...
#7589 opened May 5, 2026 by kbsteere Loading…
[GHSA-rgv9-q543-rqg4] Uncontrolled Resource Consumption in FasterXML jackson-databind
#7588 opened May 5, 2026 by albertabiev1 Loading…
[GHSA-6rcx-55r6-jx65] A vulnerability was found in PrefectHQ prefect up to 3.6...
#7583 opened May 4, 2026 by nedlir Loading…
[GHSA-p3pq-hxmr-vqqr] A vulnerability has been found in PrefectHQ prefect up to...
#7582 opened May 4, 2026 by nedlir Loading…
[GHSA-hvph-5985-r63v] A flaw has been found in PrefectHQ prefect up to 3.6.13....
#7581 opened May 4, 2026 by nedlir Loading…
ProTip! Find all pull requests that aren't related to any open issues with -linked:issue.