Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

3,170 advisories

Loading
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader,... High Unreviewed
CVE-2021-40420 was published Feb 10, 2022
A use-after-free vulnerability exists in the RS-274X aperture definition tokenization... High Unreviewed
CVE-2021-40401 was published Feb 10, 2022
Use after free in `DecodePng` kernel High
CVE-2022-23584 was published for tensorflow (pip) Feb 9, 2022
Use After Free in NPM radare2.js prior to 5.6.2. High Unreviewed
CVE-2022-0520 was published Feb 9, 2022
Use after free in media in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to... High Unreviewed
CVE-2021-38008 was published Feb 8, 2022
MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the... High Unreviewed
CVE-2021-46669 was published Feb 2, 2022
kernel/ucount.c in the Linux kernel 5.14 through 5.16.4, when unprivileged user namespaces are... High Unreviewed
CVE-2022-24122 was published Jan 30, 2022
A CWE-416: Use After Free vulnerability exists that could cause arbitrary code execution when a... High Unreviewed
CVE-2021-22808 was published Jan 29, 2022
Cesanta MJS v2.20.0 was discovered to contain a heap-use-after-free via mjs_apply at src/mjs_exec.c. High Unreviewed
CVE-2021-46525 was published Jan 28, 2022
HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component H5AC_unpin_entry. High Unreviewed
CVE-2021-46242 was published Jan 22, 2022
A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain... High Unreviewed
CVE-2021-4083 was published Jan 19, 2022
NVIDIA Linux distributions contain a vulnerability in nvmap ioctl, which allows any user with a... High Unreviewed
CVE-2021-34403 was published Jan 19, 2022
In ipcSetDataReference of Parcel.cpp, there is a possible way to corrupt memory due to a use... High Unreviewed
CVE-2021-39620 was published Jan 15, 2022
In fs/eventpoll.c, there is a possible use after free. This could lead to local escalation of... High Unreviewed
CVE-2021-39634 was published Jan 15, 2022
In delete_protocol of main.c, there is a possible arbitrary code execution due to a use after... High Unreviewed
CVE-2021-39681 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-44701 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-44705 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-44704 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-44706 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-44710 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-45062 was published Jan 15, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-45064 was published Jan 15, 2022
An issue was discovered in JerryScript commit a6ab5e9. There is an Use-After-Free in... High Unreviewed
CVE-2021-46170 was published Jan 15, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34872 was published Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-34879 was published Jan 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database