Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

776 advisories

Loading
Jsish v3.5.0 was discovered to contain a heap-use-after-free via DeleteTreeValue in src/jsiObj.c.... Moderate Unreviewed
CVE-2021-46495 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ValueLookupBase in src... Moderate Unreviewed
CVE-2021-46494 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_DecrRefCount in src/jsiValue... Moderate Unreviewed
CVE-2021-46489 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_IncrRefCount in src/jsiValue... Moderate Unreviewed
CVE-2021-46484 was published Jan 28, 2022
A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove in drivers/memstick/host... Moderate Unreviewed
CVE-2022-0487 was published Feb 10, 2022
In vcu driver, there is a possible information disclosure due to a use after free. This could... Moderate Unreviewed
CVE-2022-20035 was published Feb 11, 2022
VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB... Moderate Unreviewed
CVE-2021-22040 was published Feb 17, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed
CVE-2022-24368 was published Feb 19, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed
CVE-2022-24061 was published Feb 19, 2022
A use-after-free vulnerability was found in usbredir in versions prior to 0.11.0 in the... Moderate Unreviewed
CVE-2021-3700 was published Feb 25, 2022
The interface of a certain HarmonyOS module has a UAF vulnerability. Successful exploitation of... Moderate Unreviewed
CVE-2021-22478 was published Feb 26, 2022
Use After Free in r_reg_get_name_idx in GitHub repository radareorg/radare2 prior to 5.6.6. Moderate Unreviewed
CVE-2022-0849 was published Mar 6, 2022
An use after free vulnerability in sdp driver prior to SMR Mar-2022 Release 1 allows kernel crash. Moderate Unreviewed
CVE-2022-25822 was published Mar 11, 2022
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows... Moderate Unreviewed
CVE-2021-44964 was published Mar 15, 2022
GPAC 1.0.1 is affected by Use After Free through MP4Box. Moderate Unreviewed
CVE-2022-24576 was published Mar 15, 2022
In TBD of TBD, there is a possible user after free vulnerability due to a race condition. This... Moderate Unreviewed
CVE-2021-39712 was published Mar 17, 2022
In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in... Moderate Unreviewed
CVE-2021-45868 was published Mar 19, 2022
A use-after-free flaw was found in the add_partition in block/partitions/core.c in the Linux... Moderate Unreviewed
CVE-2021-4150 was published Mar 24, 2022
lrzip v0.641 was discovered to contain a multiple concurrency use-after-free between the... Moderate Unreviewed
CVE-2022-26291 was published Mar 30, 2022
Use after free in Cast in Google Chrome prior to 99.0.4844.51 allowed an attacker who convinced a... Moderate Unreviewed
CVE-2022-0793 was published Apr 6, 2022
heap-use-after-free in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is... Moderate Unreviewed
CVE-2022-1284 was published Apr 9, 2022
GPAC mp4box 1.1.0-DEV-rev1727-g8be34973d-master has a use-after-free vulnerability in function... Moderate Unreviewed
CVE-2022-27147 was published Apr 9, 2022
In mdp, there is a possible memory corruption due to a use after free. This could lead to local... Moderate Unreviewed
CVE-2022-20052 was published Apr 12, 2022
In ion_ioctl of ion-ioctl.c, there is a possible way to leak kernel head data due to a use after... Moderate Unreviewed
CVE-2021-39800 was published Apr 13, 2022
A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the... Moderate Unreviewed
CVE-2022-1280 was published Apr 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database