Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,262
NuGet
760
pip
4,058
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,440 advisories

Loading
MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the... High Unreviewed
CVE-2021-46669 was published Feb 2, 2022
kernel/ucount.c in the Linux kernel 5.14 through 5.16.4, when unprivileged user namespaces are... High Unreviewed
CVE-2022-24122 was published Jan 30, 2022
A CWE-416: Use After Free vulnerability exists that could cause arbitrary code execution when a... High Unreviewed
CVE-2021-22808 was published Jan 29, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_IncrRefCount in src/jsiValue... Moderate Unreviewed
CVE-2021-46484 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_DecrRefCount in src/jsiValue... Moderate Unreviewed
CVE-2021-46489 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ValueLookupBase in src... Moderate Unreviewed
CVE-2021-46494 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via DeleteTreeValue in src/jsiObj.c.... Moderate Unreviewed
CVE-2021-46495 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_UserObjDelete in src... Moderate Unreviewed
CVE-2021-46497 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_ObjFree in src/jsiObj.c.... Moderate Unreviewed
CVE-2021-46496 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_wswebsocketObjFree in src... Moderate Unreviewed
CVE-2021-46498 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ArgTypeCheck in src/jsiFunc... Moderate Unreviewed
CVE-2021-46500 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ValueCopyMove in src... Moderate Unreviewed
CVE-2021-46499 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via SortSubCmd in src/jsiArray.c.... Moderate Unreviewed
CVE-2021-46501 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/lib/x86_64-linux-gnu... Moderate Unreviewed
CVE-2021-46503 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/lib/x86_64-linux-gnu... Moderate Unreviewed
CVE-2021-46502 was published Jan 28, 2022
Cesanta MJS v2.20.0 was discovered to contain a heap-use-after-free via mjs_apply at src/mjs_exec.c. High Unreviewed
CVE-2021-46525 was published Jan 28, 2022
HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component H5AC_unpin_entry. High Unreviewed
CVE-2021-46242 was published Jan 22, 2022
The binary MP4Box in GPAC v1.1.0 was discovered to contain an invalid free vulnerability via the... Moderate Unreviewed
CVE-2021-46239 was published Jan 22, 2022
A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain... High Unreviewed
CVE-2021-4083 was published Jan 19, 2022
NVIDIA Linux distributions contain a vulnerability in nvmap ioctl, which allows any user with a... High Unreviewed
CVE-2021-34403 was published Jan 19, 2022
In ipcSetDataReference of Parcel.cpp, there is a possible way to corrupt memory due to a use... High Unreviewed
CVE-2021-39620 was published Jan 15, 2022
In fs/eventpoll.c, there is a possible use after free. This could lead to local escalation of... High Unreviewed
CVE-2021-39634 was published Jan 15, 2022
In delete_protocol of main.c, there is a possible arbitrary code execution due to a use after... High Unreviewed
CVE-2021-39681 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-44701 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-44704 was published Jan 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database