GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
513 advisories
Filter by severity
Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions....
Critical
Unreviewed
CVE-2022-48511
was published
Jul 6, 2023
Use After Free (UAF) vulnerability in the Vdecoderservice service. Successful exploitation of...
Critical
Unreviewed
CVE-2022-48512
was published
Jul 6, 2023
A use-after-free issue was addressed with improved memory management. This issue is fixed in...
Critical
Unreviewed
CVE-2023-32412
was published
Jun 23, 2023
A use-after-free issue was addressed with improved memory management. This issue is fixed in...
Critical
Unreviewed
CVE-2023-32387
was published
Jun 23, 2023
A use after free issue was addressed with improved memory management. This issue is fixed in...
Critical
Unreviewed
CVE-2022-22630
was published
Jun 23, 2023
The VMware vCenter Server contains a use-after-free vulnerability in the implementation of the...
Critical
Unreviewed
CVE-2023-20893
was published
Jun 22, 2023
A use-after-free related to unsound inference in the bytecode generation when optimizations are...
Critical
Unreviewed
CVE-2023-30470
was published
May 19, 2023
A bytecode optimization bug in Hermes prior to commit e6ed9c1a4b02dc219de1648f44cd808a56171b81...
Critical
Unreviewed
CVE-2023-28081
was published
May 19, 2023
In OnWakelockReleased of attribution_processor.cc, there is a use after free that could lead to...
Critical
Unreviewed
CVE-2023-21096
was published
Apr 19, 2023
Use after free vulnerability in decon driver prior to SMR Mar-2023 Release 1 allows attackers to...
Critical
Unreviewed
CVE-2023-21459
was published
Mar 16, 2023
An arbitrary file upload vulnerability in the camera_upload.php component of PMB v7.4.6 allows...
Critical
Unreviewed
CVE-2023-24734
was published
Mar 6, 2023
A use-after-free vulnerability in WebCore::RenderLayer::repaintBlockSelectionGaps in WebKitGTK...
Critical
Unreviewed
CVE-2023-25362
was published
Mar 2, 2023
A use-after-free vulnerability in WebCore::RenderLayer::updateDescendantDependentFlags in...
Critical
Unreviewed
CVE-2023-25363
was published
Mar 2, 2023
A use-after-free vulnerability in WebCore::RenderLayer::setNextSibling in WebKitGTK before 2.36.8...
Critical
Unreviewed
CVE-2023-25361
was published
Mar 2, 2023
A use-after-free vulnerability in WebCore::RenderLayer::addChild in WebKitGTK before 2.36.8...
Critical
Unreviewed
CVE-2023-25358
was published
Mar 2, 2023
A use-after-free vulnerability in WebCore::RenderLayer::renderer in WebKitGTK before 2.36.8...
Critical
Unreviewed
CVE-2023-25360
was published
Mar 2, 2023
An issue in HTACG HTML Tidy v5.7.28 allows attacker to execute arbitrary code via the -g option...
Critical
Unreviewed
CVE-2021-33391
was published
Feb 17, 2023
When processing files, malloc stores the data of the current line. When processing comments,...
Critical
Unreviewed
CVE-2021-33641
was published
Jan 20, 2023
An issue was discovered in ksmbd in the Linux kernel before 5.19.2. fs/ksmbd/smb2pdu.c has a use...
Critical
Unreviewed
CVE-2022-47939
was published
Dec 23, 2022
An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable...
Critical
Unreviewed
CVE-2022-26486
was published
Dec 22, 2022
Session history navigations may have led to a use-after-free and potentially exploitable crash....
Critical
Unreviewed
CVE-2022-34470
was published
Dec 22, 2022
A use-after-free in WebGL extensions could have led to a potentially exploitable crash. This...
Critical
Unreviewed
CVE-2022-46882
was published
Dec 22, 2022
After tar_close(), libtar.c releases the memory pointed to by pointer t. After tar_close() is...
Critical
Unreviewed
CVE-2021-33640
was published
Dec 19, 2022
drachtio-server 0.8.18 has a request-handler.cpp event_cb use-after-free for any request.
Critical
Unreviewed
CVE-2022-45474
was published
Nov 18, 2022
Nginx NJS v0.7.2 was discovered to contain a heap-use-after-free bug caused by illegal memory...
Critical
Unreviewed
CVE-2022-43286
was published
Oct 29, 2022
ProTip!
Advisories are also available from the
GraphQL API