Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

521 advisories

Loading
Use after free in openssl Critical
CVE-2018-20997 was published for openssl (Rust) Aug 25, 2021
Use-after-free in chttp Critical
CVE-2019-16140 was published for chttp (Rust) Aug 25, 2021
tdunlap607
Use after free in image Critical
CVE-2019-16138 was published for image (Rust) Aug 25, 2021
Use after free in libflate Critical
CVE-2019-15552 was published for libflate (Rust) Aug 25, 2021
tdunlap607
Use after free in portaudio-rs Critical
CVE-2019-16881 was published for portaudio-rs (Rust) Aug 25, 2021
Use after free in rio Critical
CVE-2020-35876 was published for rio (Rust) Aug 25, 2021
Use after free and double free in bitvec Critical
CVE-2020-35862 was published for bitvec (Rust) Aug 25, 2021
Use after free in rusqlite Critical
CVE-2020-35873 was published for rusqlite (Rust) Aug 25, 2021
Use after free in rusqlite Critical
CVE-2020-35870 was published for rusqlite (Rust) Aug 25, 2021
Use after free in actix-utils Critical
CVE-2020-35898 was published for actix-utils (Rust) Aug 25, 2021
Use-after-free in actix-codec Critical
CVE-2020-35902 was published for actix-codec (Rust) Aug 25, 2021
Use after free in nano_arena Critical
CVE-2021-28032 was published for nano_arena (Rust) Aug 25, 2021
Use-after-free in yottadb Critical
CVE-2021-27377 was published for yottadb (Rust) Aug 25, 2021
Use After Free in node.js Critical Unreviewed
CVE-2021-22930 was published Oct 8, 2021
Use after free in Web Transport in Google Chrome prior to 95.0.4638.69 allowed a remote attacker... Critical Unreviewed
CVE-2021-38002 was published Nov 24, 2021
When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use... Critical Unreviewed
CVE-2021-38504 was published Dec 9, 2021
Use After Free in tremor-script Critical
CVE-2021-45701 was published for tremor-script (Rust) Jan 6, 2022
Use After Free in Conda vim prior to 8.2. Critical Unreviewed
CVE-2022-0443 was published Feb 8, 2022
Use After Free in GitHub repository radareorg/radare2 prior to 5.6.0. Critical Unreviewed
CVE-2022-0139 was published Feb 9, 2022
njs through 0.7.0, used in NGINX, was discovered to contain a heap use-after-free in... Critical Unreviewed
CVE-2022-25139 was published Feb 15, 2022
Use after free in Site isolation in Google Chrome prior to 97.0.4692.99 allowed a remote attacker... Critical Unreviewed
CVE-2022-0290 was published Feb 15, 2022
Use After Free in HashiCorp Nomad Critical
CVE-2020-27195 was published for github.com/hashicorp/nomad (Go) Feb 15, 2022
Use After Free in GitHub repository radareorg/radare2 prior to 5.6.2. Critical Unreviewed
CVE-2022-0559 was published Feb 17, 2022
In PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3, when using filter... Critical Unreviewed
CVE-2021-21708 was published Feb 28, 2022
A use after free issue was addressed with improved memory management. This issue is fixed in tvOS... Critical Unreviewed
CVE-2022-22641 was published Mar 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database