GitHub Security Lab

Securing the world's software, together

GitHub Security Lab

Securing the world's software, together

GitHub Security Lab’s mission is to inspire and enable the community to secure the open source software we all depend on.

Follow @GHSecurityLab

What we do

Find vulnerabilities

Our researchers find and report new vulnerabilities in the open source projects everyone relies on.

Empower others

We build tools like CodeQL to make security easy for anyone working to secure open source.

Foster collaboration

We're building a community of security researchers and an open coalition of the world's security teams.

Vulnerabilities we've disclosed

Type confusion in scripttag leads to XSS - CVE-2021-32696

GHSL-2021-083 • CVE-2021-32696 • published 2021-06-22 00:00:00 ago • discovered by team
Host memory disclosure in libslirp - CVE-2021-3592, CVE-2021-3593, CVE-2021-3594, CVE-2021-3595

GHSL-2021-078_081 • CVE-2021-3592 • CVE-2021-3593 • CVE-2021-3595 • CVE-2021-3594 • published 2021-06-22 00:00:00 ago • discovered by Agustin Gianni
Local privilege escalation on any Linux system that uses polkit - CVE-2021-3560

GHSL-2021-074 • CVE-2021-3560 • published 2021-06-22 00:00:00 ago • discovered by Kevin Backhouse
Arbitrary code execution in Netflix NdBench

GHSL-2021-064 • published 2021-06-22 00:00:00 ago • discovered by Alvaro Munoz
Multiple pre-auth RCEs in Apache Dubbo - CVE-2021-25641, CVE-2021-30179, CVE-2021-30180, CVE-2021-30181, CVE-2021-32824

GHSL-2021-034_043 • CVE-2021-25641 • CVE-2021-30179 • CVE-2021-30180 • CVE-2021-30181 • CVE-2021-32824 • published 2021-06-22 00:00:00 ago • discovered by Alvaro Munoz

See all disclosures

253 CVEs found

by Security Lab researchers

Meet the team

Kevin Backhouse

Compilers, program analysis, security research

@kevinbackhouse

@kevin_backhouse

Man Yue Mo

Security scavenger

@m-y-mo

@mmolgtm

Agustin Gianni

Avoiding grep since 1999 AD

@agustingianni

Antonio Morales

EthicalHackerBugHunter & C++; 3735928559

@antonio-morales

@nosoynadiemas

Xavier René-Corail

3-legged race organizer: Building bridges between Dev and Sec

@xcorail

Hauwa Otori

Operations and coalition builder for security research

@hauwaotori

Bas Alberts

Debugging enthusiast

@anticomputer

@basalberts

Alvaro Munoz

Hacking since 1970-01-01T00:00:00Z

@pwntester

Jaroslav Lobacevski

Security panda

@jarlob

@yarlob

Robert Schultheis

I read your CVEs

@rschultheis

Shelby Cunningham

Security mostly, with privacy and retro if there's time.

@shelbyc

@shelbyc64

Jonathan Moroney

Seeking safer software

@darakian

@Hooray_Darakian

Our tools

Our industry-leading code analysis engine, CodeQL, is now free for use on open source. CodeQL lets you query code as though it were data. Write a query to find all variants of a vulnerability, eradicating it forever. Then share your query to help others do the same.

Download CodeQL

Join the effort

As a security researcher, your expertise is instrumental in securing the world’s software. Codify that knowledge as an expressive, executable, and repeatable CodeQL query that can be run on many codebases. Get rewarded for queries that have a positive impact on open source projects through our bounty program.

See our bounties

Our latest research

LiveQL
CodeQL
Java
CVE

LiveQL Episode II: The Rhino in the room

April 19, 2021

Fuzzing
Apache HTTP
Address Sanitizer
Interceptors
CVE

Fuzzing sockets: Apache HTTP, Part 2: Custom Interceptors

March 30, 2021

Chrome
Security
Exploit

One day short of a full chain: Part 3 - Chrome renderer RCE

March 24, 2021

See all research

May	JUN	Jul
	24
2020	2021	2022