Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

5,322 advisories

Loading
heap-use-after-free in GitHub repository radareorg/radare2 prior to 5.7.0. This vulnerability is... Moderate Unreviewed
CVE-2022-1444 was published Apr 25, 2022
An exploitable use-after-free vulnerability exists in the HTTP server implementation of Cesanta... Critical Unreviewed
CVE-2017-2891 was published May 13, 2022
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component... High Unreviewed
CVE-2022-27455 was published Apr 15, 2022
nginx njs 0.7.2 is affected suffers from Use-after-free in njs_function_frame_alloc() when it try... Critical Unreviewed
CVE-2022-27007 was published Apr 15, 2022
In ion_ioctl of ion-ioctl.c, there is a possible use after free due to improper locking. This... High Unreviewed
CVE-2021-39801 was published Apr 13, 2022
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component... High Unreviewed
CVE-2022-27456 was published Apr 15, 2022
Use after free vulnerability in dsp_context_unload_graph function of DSP driver prior to SMR Apr... High Unreviewed
CVE-2022-27834 was published Apr 12, 2022
In TBD of TBD, there is a possible out of bounds read due to a use after free. This could lead to... High Unreviewed
CVE-2021-39812 was published Apr 13, 2022
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component... High Unreviewed
CVE-2022-27457 was published Apr 15, 2022
In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free.... High Unreviewed
CVE-2021-0707 was published Apr 13, 2022
An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). Using... High Unreviewed
CVE-2021-44497 was published Apr 16, 2022
MariaDB Server v10.6.5 and below was discovered to contain an use-after-free in the component... High Unreviewed
CVE-2022-27376 was published Apr 13, 2022
The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring... High Unreviewed
CVE-2022-28893 was published Apr 12, 2022
A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the... Moderate Unreviewed
CVE-2022-1280 was published Apr 14, 2022
MariaDB Server v10.9 and below was discovered to contain a use-after-free via the component... High Unreviewed
CVE-2022-27447 was published Apr 15, 2022
In ion_ioctl of ion-ioctl.c, there is a possible way to leak kernel head data due to a use after... Moderate Unreviewed
CVE-2021-39800 was published Apr 13, 2022
A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be... High Unreviewed
CVE-2022-25789 was published Apr 12, 2022
libsixel 1.8.6 suffers from a Heap Use After Free vulnerability in in libsixel/src/dither.c:388. High Unreviewed
CVE-2022-27046 was published Apr 9, 2022
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component... High Unreviewed
CVE-2022-27377 was published Apr 13, 2022
libsixel 1.10.0 is vulnerable to Use after free in libsixel/src/dither.c:379. High Unreviewed
CVE-2021-41715 was published Apr 9, 2022
A maliciously crafted DWFX and SKP files in Autodesk Navisworks 2022 can be used to trigger use... High Unreviewed
CVE-2022-27528 was published Apr 12, 2022
MariaDB Server v10.6 and below was discovered to contain an use-after-free in the component... High Unreviewed
CVE-2022-27383 was published Apr 13, 2022
In mdp, there is a possible memory corruption due to a use after free. This could lead to local... High Unreviewed
CVE-2022-20062 was published Apr 12, 2022
Use after free in Webstore API in Google Chrome prior to 98.0.4758.102 allowed an attacker who... High Unreviewed
CVE-2022-0605 was published Apr 6, 2022
In mdp, there is a possible memory corruption due to a use after free. This could lead to local... Moderate Unreviewed
CVE-2022-20052 was published Apr 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database