Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,815 advisories

Loading
Description: A race condition was addressed with additional validation. This issue is fixed in... Moderate Unreviewed
CVE-2022-26690 was published May 27, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from... High Unreviewed
CVE-2022-30128 was published Jun 2, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from... High Unreviewed
CVE-2022-30127 was published Jun 2, 2022
Uncaught Exception (due to a data race) leads to process termination in Waitress High
CVE-2022-31015 was published for waitress (pip) Jun 2, 2022
oakkitten
Credited to oakkitten
An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem. The issue occurs... Moderate Unreviewed
CVE-2022-1462 was published Jun 3, 2022
x86 pv: Race condition in typeref acquisition Xen maintains a type reference count for pages, in... Moderate Unreviewed
CVE-2022-26362 was published Jun 10, 2022
The kernel module has the race condition vulnerability. Successful exploitation of this... Moderate Unreviewed
CVE-2022-31758 was published Jun 14, 2022
Improper serialization of message queue client registration can lead to race condition allowing... High Unreviewed
CVE-2021-35095 was published Jun 15, 2022
Windows Hyper-V Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-30163 was published Jun 16, 2022
In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking. This... High Unreviewed
CVE-2022-20141 was published Jun 16, 2022
In lock_sock_nested of sock.c, there is a possible use after free due to a race condition. This... Moderate Unreviewed
CVE-2022-20154 was published Jun 16, 2022
In TBD of TBD, there is a possible use-after-free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-20148 was published Jun 16, 2022
In ipu_core_jqs_msg_transport_kernel_write_sync of ipu-core-jqs-msg-transport.c, there is a... High Unreviewed
CVE-2022-20155 was published Jun 16, 2022
Data race in `Iter` and `IterMut` High
GHSA-9hpw-r23r-xgm5 was published for thread_local (Rust) Jun 17, 2022
Versions of the Amazon AWS Apache Log4j hotpatch package before log4j-cve-2021-44228-hotpatch-1.3... High Unreviewed
CVE-2022-33915 was published Jun 18, 2022
Dradis Professional Edition before 4.3.0 allows attackers to change an account password via... Moderate Unreviewed
CVE-2022-30028 was published Jun 25, 2022
In TEEI driver, there is a possible type confusion due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-21772 was published Jul 7, 2022
In GPU, there is a possible use after free due to a race condition. This could lead to local... High Unreviewed
CVE-2022-20082 was published Jul 7, 2022
In GED driver, there is a possible use after free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-21771 was published Jul 7, 2022
In TEEI driver, there is a possible use after free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-21773 was published Jul 7, 2022
In MDP, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-21776 was published Jul 7, 2022
In TEEI driver, there is a possible use after free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-21774 was published Jul 7, 2022
Windows Connected Devices Platform Service Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-30212 was published Jul 13, 2022
Windows Group Policy Elevation of Privilege Vulnerability. Moderate Unreviewed
CVE-2022-30205 was published Jul 13, 2022
Windows DNS Server Remote Code Execution Vulnerability. Moderate Unreviewed
CVE-2022-30214 was published Jul 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database