GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
52 advisories
Filter by severity
use-after-free vulnerability in Rust array-queue
Moderate
CVE-2020-35900
was published
for
array-queue
(Rust)
Aug 25, 2021
Use after free in libpulse-binding
High
GHSA-ghpq-vjxw-ch5w
was published
for
libpulse-binding
(Rust)
Aug 25, 2021
Use after free in actix-service
Moderate
CVE-2020-35899
was published
for
actix-service
(Rust)
Aug 25, 2021
Use after free in actix-utils
Critical
CVE-2020-35898
was published
for
actix-utils
(Rust)
Aug 25, 2021
iana-time-zone vulnerable to use after free in MacOS / iOS implementation
Moderate
GHSA-3fg9-hcq5-vxrc
was published
for
iana-time-zone
(Rust)
Aug 30, 2022
Use-after-free in actix-codec
Critical
CVE-2020-35902
was published
for
actix-codec
(Rust)
Aug 25, 2021
Fix a use-after-free bug in diesels Sqlite backend
Critical
CVE-2021-28305
was published
for
diesel
(Rust)
May 24, 2022
Wasmtime vulnerable to Use After Free with `externref`s
Moderate
CVE-2022-31146
was published
for
cranelift-codegen
(Rust)
Jul 20, 2022
Use after free in generic-array
High
CVE-2020-36465
was published
for
generic-array
(Rust)
Aug 25, 2021
Memory Safety Issue when using patch or merge on state and assign the result back to state
Moderate
CVE-2021-39228
was published
for
tremor-script
(Rust)
Sep 20, 2021
Use after free and double free in bitvec
Critical
CVE-2020-35862
was published
for
bitvec
(Rust)
Aug 25, 2021
futures_task::waker may cause a use-after-free if used on a type that isn't 'static
High
CVE-2020-35906
was published
for
futures-task
(Rust)
May 24, 2022
Use After Free in libpulse-binding
High
CVE-2018-25028
was published
for
libpulse-binding
(Rust)
Jan 6, 2022
Use After Free in libpulse-binding
High
CVE-2018-25027
was published
for
libpulse-binding
(Rust)
Jan 6, 2022
Use after free in nano_arena
Critical
CVE-2021-28032
was published
for
nano_arena
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API