Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

532 advisories

Loading
Withdrawn: Use after free in SciPy Critical
CVE-2023-29824 was published for scipy (pip) Jul 6, 2023 withdrawn
vin01
Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions.... Critical Unreviewed
CVE-2022-48511 was published Jul 6, 2023
Use After Free (UAF) vulnerability in the Vdecoderservice service. Successful exploitation of... Critical Unreviewed
CVE-2022-48512 was published Jul 6, 2023
Use After Free (UAF) vulnerability in the uinput module.Successful exploitation of this... Critical Unreviewed
CVE-2021-46894 was published Jul 6, 2023
A use-after-free issue was addressed with improved memory management. This issue is fixed in... Critical Unreviewed
CVE-2023-32412 was published Jun 23, 2023
A use-after-free issue was addressed with improved memory management. This issue is fixed in... Critical Unreviewed
CVE-2023-32387 was published Jun 23, 2023
A use after free issue was addressed with improved memory management. This issue is fixed in... Critical Unreviewed
CVE-2022-22630 was published Jun 23, 2023
The VMware vCenter Server contains a use-after-free vulnerability in the implementation of the... Critical Unreviewed
CVE-2023-20893 was published Jun 22, 2023
A use-after-free related to unsound inference in the bytecode generation when optimizations are... Critical Unreviewed
CVE-2023-30470 was published May 19, 2023
A bytecode optimization bug in Hermes prior to commit e6ed9c1a4b02dc219de1648f44cd808a56171b81... Critical Unreviewed
CVE-2023-28081 was published May 19, 2023
In OnWakelockReleased of attribution_processor.cc, there is a use after free that could lead to... Critical Unreviewed
CVE-2023-21096 was published Apr 19, 2023
Use after free vulnerability in decon driver prior to SMR Mar-2023 Release 1 allows attackers to... Critical Unreviewed
CVE-2023-21459 was published Mar 16, 2023
An arbitrary file upload vulnerability in the camera_upload.php component of PMB v7.4.6 allows... Critical Unreviewed
CVE-2023-24734 was published Mar 6, 2023
A use-after-free vulnerability in WebCore::RenderLayer::repaintBlockSelectionGaps in WebKitGTK... Critical Unreviewed
CVE-2023-25362 was published Mar 2, 2023
A use-after-free vulnerability in WebCore::RenderLayer::updateDescendantDependentFlags in... Critical Unreviewed
CVE-2023-25363 was published Mar 2, 2023
A use-after-free vulnerability in WebCore::RenderLayer::setNextSibling in WebKitGTK before 2.36.8... Critical Unreviewed
CVE-2023-25361 was published Mar 2, 2023
A use-after-free vulnerability in WebCore::RenderLayer::addChild in WebKitGTK before 2.36.8... Critical Unreviewed
CVE-2023-25358 was published Mar 2, 2023
A use-after-free vulnerability in WebCore::RenderLayer::renderer in WebKitGTK before 2.36.8... Critical Unreviewed
CVE-2023-25360 was published Mar 2, 2023
An issue in HTACG HTML Tidy v5.7.28 allows attacker to execute arbitrary code via the -g option... Critical Unreviewed
CVE-2021-33391 was published Feb 17, 2023
When processing files, malloc stores the data of the current line. When processing comments,... Critical Unreviewed
CVE-2021-33641 was published Jan 20, 2023
An issue was discovered in ksmbd in the Linux kernel before 5.19.2. fs/ksmbd/smb2pdu.c has a use... Critical Unreviewed
CVE-2022-47939 was published Dec 23, 2022
An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable... Critical Unreviewed
CVE-2022-26486 was published Dec 22, 2022
Session history navigations may have led to a use-after-free and potentially exploitable crash.... Critical Unreviewed
CVE-2022-34470 was published Dec 22, 2022
A use-after-free in WebGL extensions could have led to a potentially exploitable crash. This... Critical Unreviewed
CVE-2022-46882 was published Dec 22, 2022
After tar_close(), libtar.c releases the memory pointed to by pointer t. After tar_close() is... Critical Unreviewed
CVE-2021-33640 was published Dec 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database