GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
801 advisories
Filter by severity
In edma driver, there is a possible memory corruption due to a use after free. This could lead to...
Moderate
Unreviewed
CVE-2021-0656
was published
Nov 19, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to...
Moderate
Unreviewed
CVE-2021-0667
was published
Nov 19, 2021
In ccu, there is a possible memory corruption due to a use after free. This could lead to local...
Moderate
Unreviewed
CVE-2021-0664
was published
Nov 19, 2021
In __configfs_open_file of file.c, there is a possible use-after-free due to improper locking....
Moderate
Unreviewed
CVE-2021-39656
was published
Dec 16, 2021
In regmap_exit of regmap.c, there is a possible use-after-free due to improper locking. This...
Moderate
Unreviewed
CVE-2021-39649
was published
Dec 16, 2021
In periodic_io_work_func of lwis_periodic_io.c, there is a possible out of bounds write due to a...
Moderate
Unreviewed
CVE-2021-39638
was published
Dec 16, 2021
In dsi_panel_debugfs_read_cmdset of dsi_panel.c, there is a possible disclosure of freed kernel...
Moderate
Unreviewed
CVE-2021-1042
was published
Dec 16, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to...
Moderate
Unreviewed
CVE-2021-0899
was published
Dec 18, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to...
Moderate
Unreviewed
CVE-2021-0898
was published
Dec 18, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to...
Moderate
Unreviewed
CVE-2021-0893
was published
Dec 18, 2021
The gf_dump_setup function in GPAC 1.0.1 allows malicoius users to cause a denial of service ...
Moderate
Unreviewed
CVE-2021-45291
was published
Dec 22, 2021
An invalid free vulnerability exists in gpac 1.1.0 via the gf_svg_delete_attribute_value function...
Moderate
Unreviewed
CVE-2021-45263
was published
Dec 23, 2021
An invalid free vulnerability exists in gpac 1.1.0 via the gf_sg_command_del function, which...
Moderate
Unreviewed
CVE-2021-45262
was published
Dec 23, 2021
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a...
Moderate
Unreviewed
CVE-2021-45482
was published
Dec 26, 2021
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different...
Moderate
Unreviewed
CVE-2021-45483
was published
Dec 26, 2021
Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampled_data_sample (called from...
Moderate
Unreviewed
CVE-2021-45944
was published
Jan 2, 2022
Use after free in tcpslice triggers AddressSanitizer, no other confirmed impact.
Moderate
Unreviewed
CVE-2021-41043
was published
Jan 6, 2022
An issue was discovered in uriparser before 0.9.6. It performs invalid free operations in...
Moderate
Unreviewed
CVE-2021-46142
was published
Jan 7, 2022
An issue was discovered in uriparser before 0.9.6. It performs invalid free operations in...
Moderate
Unreviewed
CVE-2021-46141
was published
Jan 7, 2022
An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when...
Moderate
Unreviewed
CVE-2021-36408
was published
Jan 12, 2022
A Segmentation fault casued by heap use after free vulnerability exists in Gpac through 1.0.1 via...
Moderate
Unreviewed
CVE-2021-40566
was published
Jan 13, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
Moderate
Unreviewed
CVE-2021-34886
was published
Jan 14, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
Moderate
Unreviewed
CVE-2021-34884
was published
Jan 14, 2022
Adobe InDesign version 16.4 (and earlier) is affected by a use-after-free vulnerability in the...
Moderate
Unreviewed
CVE-2021-45059
was published
Jan 14, 2022
ProTip!
Advisories are also available from the
GraphQL API