Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

532 advisories

Loading
Use after free in ANGLE in Google Chrome prior to 83.0.4103.97 allowed a remote attacker to... Critical Unreviewed
CVE-2020-6492 was published May 24, 2022
Use after free in Portals in Google Chrome prior to 94.0.4606.61 allowed a remote attacker who... Critical Unreviewed
CVE-2021-37973 was published May 24, 2022
Ardour v5.12 contains a use-after-free vulnerability in the component ardour/libs/pbd/xml++.cc... Critical Unreviewed
CVE-2020-22617 was published May 24, 2022
Use after free in Indexed DB API in Google Chrome prior to 93.0.4577.82 allowed a remote attacker... Critical Unreviewed
CVE-2021-30633 was published May 24, 2022
A use after free can occur due to improper validation of P2P device address in PD Request frame... Critical Unreviewed
CVE-2021-1976 was published May 24, 2022
A use after free issue was addressed with improved memory management. This issue is fixed in iOS... Critical Unreviewed
CVE-2021-1864 was published May 24, 2022
Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020.001.30020 (and earlier)... Critical Unreviewed
CVE-2021-28550 was published May 24, 2022
OwnTone (aka owntone-server) through 28.1 has a use-after-free in net_bind() in misc.c. Critical Unreviewed
CVE-2021-38383 was published May 24, 2022
Use after free vulnerability in file transfer protocol component in Synology DiskStation Manager ... Critical Unreviewed
CVE-2021-27649 was published May 24, 2022
Use After Free in Hermes Critical
CVE-2021-24037 was published for hermes-engine (npm) May 24, 2022
There is a heap-use-after-free at ecma-helpers-string.c:772 in ecma_ref_ecma_string in... Critical Unreviewed
CVE-2020-23302 was published May 24, 2022
aom_dsp/grain_table.c in libaom in AOMedia before 2021-03-30 has a use-after-free. Critical Unreviewed
CVE-2021-30474 was published May 24, 2022
The mq_notify function in the GNU C Library (aka glibc) through 2.33 has a use-after-free. It may... Critical Unreviewed
CVE-2021-33574 was published May 24, 2022
A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread... Critical Unreviewed
CVE-2020-36329 was published May 24, 2022
HTTP Protocol Stack Remote Code Execution Vulnerability Critical Unreviewed
CVE-2021-31166 was published May 24, 2022
Exim 4 before 4.94.2 allows Use After Free in smtp_reset in certain situations that may be common... Critical Unreviewed
CVE-2020-28018 was published May 24, 2022
A heap memory corruption problem (use after free) can be triggered in libgetdata v0.10.0 when... Critical Unreviewed
CVE-2021-20204 was published May 24, 2022
Use after free in permissions in Google Chrome prior to 90.0.4430.72 allowed a remote attacker... Critical Unreviewed
CVE-2021-21201 was published May 24, 2022
Use after free in navigation in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who... Critical Unreviewed
CVE-2021-21226 was published May 24, 2022
Pulse Connect Secure 9.0R3/9.1R1 and higher is vulnerable to an authentication bypass... Critical Unreviewed
CVE-2021-22893 was published May 24, 2022
Fix a use-after-free bug in diesels Sqlite backend Critical
CVE-2021-28305 was published for diesel (Rust) May 24, 2022
Use After Free vulnerability in iscsi_snapshot_comm_core in Synology DiskStation Manager (DSM)... Critical Unreviewed
CVE-2021-27646 was published May 24, 2022
A flaw was found in gnutls. A use after free issue in client sending key_share extension may lead... Critical Unreviewed
CVE-2021-20231 was published May 24, 2022
A flaw was found in gnutls. A use after free issue in client_send_params in lib/ext... Critical Unreviewed
CVE-2021-20232 was published May 24, 2022
When unserializing an object with dynamic properties HHVM needs to pre-reserve the full size of... Critical Unreviewed
CVE-2020-1900 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database