Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,494 advisories

Loading
A use after free issue was addressed with improved memory management. This issue is fixed in... High Unreviewed
CVE-2020-3886 was published Dec 24, 2021
A use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem in the Linux kernel through... High Unreviewed
CVE-2021-44733 was published Dec 23, 2021
An invalid free vulnerability exists in gpac 1.1.0 via the gf_sg_command_del function, which... Moderate Unreviewed
CVE-2021-45262 was published Dec 23, 2021
An invalid free vulnerability exists in gpac 1.1.0 via the gf_svg_delete_attribute_value function... Moderate Unreviewed
CVE-2021-45263 was published Dec 23, 2021
The gf_dump_setup function in GPAC 1.0.1 allows malicoius users to cause a denial of service ... Moderate Unreviewed
CVE-2021-45291 was published Dec 22, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to... Moderate Unreviewed
CVE-2021-0893 was published Dec 18, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to... Moderate Unreviewed
CVE-2021-0898 was published Dec 18, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to... Moderate Unreviewed
CVE-2021-0899 was published Dec 18, 2021
In unix_scm_to_skb of af_unix.c, there is a possible use after free bug due to a race condition.... Moderate Unreviewed
CVE-2021-0920 was published Dec 16, 2021
In ion_dma_buf_end_cpu_access and related functions of ion.c, there is a possible way to corrupt... High Unreviewed
CVE-2021-0929 was published Dec 16, 2021
In dsi_panel_debugfs_read_cmdset of dsi_panel.c, there is a possible disclosure of freed kernel... Moderate Unreviewed
CVE-2021-1042 was published Dec 16, 2021
In ep_loop_check_proc of eventpoll.c, there is a possible way to corrupt memory due to a use... High Unreviewed
CVE-2021-1048 was published Dec 16, 2021
In periodic_io_work_func of lwis_periodic_io.c, there is a possible out of bounds write due to a... Moderate Unreviewed
CVE-2021-39638 was published Dec 16, 2021
In regmap_exit of regmap.c, there is a possible use-after-free due to improper locking. This... Moderate Unreviewed
CVE-2021-39649 was published Dec 16, 2021
In __configfs_open_file of file.c, there is a possible use-after-free due to improper locking.... Moderate Unreviewed
CVE-2021-39656 was published Dec 16, 2021
A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization... High Unreviewed
CVE-2021-44014 was published Dec 15, 2021
A vulnerability has been identified in JT Utilities (All versions < V13.1.1.0), JTTK (All... High Unreviewed
CVE-2021-44433 was published Dec 15, 2021
A vulnerability has been identified in JT Utilities (All versions < V13.0.3.0), JTTK (All... High Unreviewed
CVE-2021-44447 was published Dec 15, 2021
When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use... Critical Unreviewed
CVE-2021-38504 was published Dec 9, 2021
A use-after-free could have occured when an HTTP2 session object was released on a different... High Unreviewed
CVE-2021-43535 was published Dec 9, 2021
Failure to correctly record the location of live pointers across wasm instance calls resulted in... High Unreviewed
CVE-2021-43539 was published Dec 9, 2021
vim is vulnerable to Use After Free High Unreviewed
CVE-2021-4069 was published Dec 7, 2021
A use-after-free vulnerability exists when reading a DWF/DWFX file using Open Design Alliance... High Unreviewed
CVE-2021-44047 was published Dec 6, 2021
Use After Free in lucet High
CVE-2021-43790 was published for lucet-runtime (Rust) Nov 30, 2021
iximeow acfoltzer
cratelyn aturon alexcrichton aggarwaa
Credited to iximeow, acfoltzer, cratelyn, aturon, alexcrichton, and aggarwaa
Use after free in Sign-In in Google Chrome prior to 95.0.4638.69 allowed a remote attacker who... High Unreviewed
CVE-2021-37997 was published Nov 24, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database