GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
4,231 advisories
Filter by severity
stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function...
High
Unreviewed
CVE-2022-28042
was published
Apr 16, 2022
An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). Using...
High
Unreviewed
CVE-2021-44497
was published
Apr 16, 2022
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component...
High
Unreviewed
CVE-2022-27458
was published
Apr 15, 2022
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component...
High
Unreviewed
CVE-2022-27456
was published
Apr 15, 2022
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component...
High
Unreviewed
CVE-2022-27455
was published
Apr 15, 2022
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component...
High
Unreviewed
CVE-2022-27457
was published
Apr 15, 2022
nginx njs 0.7.2 is affected suffers from Use-after-free in njs_function_frame_alloc() when it try...
Critical
Unreviewed
CVE-2022-27007
was published
Apr 15, 2022
MariaDB Server v10.9 and below was discovered to contain a use-after-free via the component...
High
Unreviewed
CVE-2022-27447
was published
Apr 15, 2022
A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the...
Moderate
Unreviewed
CVE-2022-1280
was published
Apr 14, 2022
In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free....
High
Unreviewed
CVE-2021-0707
was published
Apr 13, 2022
In ion_ioctl of ion-ioctl.c, there is a possible use after free due to improper locking. This...
High
Unreviewed
CVE-2021-39801
was published
Apr 13, 2022
In TBD of TBD, there is a possible out of bounds read due to a use after free. This could lead to...
High
Unreviewed
CVE-2021-39812
was published
Apr 13, 2022
In ion_ioctl of ion-ioctl.c, there is a possible way to leak kernel head data due to a use after...
Moderate
Unreviewed
CVE-2021-39800
was published
Apr 13, 2022
MariaDB Server v10.6.5 and below was discovered to contain an use-after-free in the component...
High
Unreviewed
CVE-2022-27376
was published
Apr 13, 2022
Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based...
High
Unreviewed
CVE-2022-24070
was published
Apr 13, 2022
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component...
High
Unreviewed
CVE-2022-27377
was published
Apr 13, 2022
MariaDB Server v10.6 and below was discovered to contain an use-after-free in the component...
High
Unreviewed
CVE-2022-27383
was published
Apr 13, 2022
The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring...
High
Unreviewed
CVE-2022-28893
was published
Apr 12, 2022
In mdp, there is a possible memory corruption due to a use after free. This could lead to local...
Moderate
Unreviewed
CVE-2022-20052
was published
Apr 12, 2022
In mdp, there is a possible memory corruption due to a use after free. This could lead to local...
High
Unreviewed
CVE-2022-20062
was published
Apr 12, 2022
A maliciously crafted DWF, 3DS and DWFX files in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be...
High
Unreviewed
CVE-2022-25789
was published
Apr 12, 2022
A maliciously crafted DWFX and SKP files in Autodesk Navisworks 2022 can be used to trigger use...
High
Unreviewed
CVE-2022-27528
was published
Apr 12, 2022
Use after free vulnerability in dsp_context_unload_graph function of DSP driver prior to SMR Apr...
High
Unreviewed
CVE-2022-27834
was published
Apr 12, 2022
jbd2_journal_wait_updates in fs/jbd2/transaction.c in the Linux kernel before 5.17.1 has a use...
High
Unreviewed
CVE-2022-28796
was published
Apr 9, 2022
libsixel 1.8.6 suffers from a Heap Use After Free vulnerability in in libsixel/src/dither.c:388.
High
Unreviewed
CVE-2022-27046
was published
Apr 9, 2022
ProTip!
Advisories are also available from the
GraphQL API