Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

756 advisories

Loading
In ccu, there is a possible memory corruption due to a use after free. This could lead to local... Moderate Unreviewed
CVE-2021-0664 was published Nov 19, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to... Moderate Unreviewed
CVE-2021-0667 was published Nov 19, 2021
In edma driver, there is a possible memory corruption due to a use after free. This could lead to... Moderate Unreviewed
CVE-2021-0656 was published Nov 19, 2021
In __configfs_open_file of file.c, there is a possible use-after-free due to improper locking.... Moderate Unreviewed
CVE-2021-39656 was published Dec 16, 2021
In regmap_exit of regmap.c, there is a possible use-after-free due to improper locking. This... Moderate Unreviewed
CVE-2021-39649 was published Dec 16, 2021
In periodic_io_work_func of lwis_periodic_io.c, there is a possible out of bounds write due to a... Moderate Unreviewed
CVE-2021-39638 was published Dec 16, 2021
In dsi_panel_debugfs_read_cmdset of dsi_panel.c, there is a possible disclosure of freed kernel... Moderate Unreviewed
CVE-2021-1042 was published Dec 16, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to... Moderate Unreviewed
CVE-2021-0899 was published Dec 18, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to... Moderate Unreviewed
CVE-2021-0898 was published Dec 18, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to... Moderate Unreviewed
CVE-2021-0893 was published Dec 18, 2021
The gf_dump_setup function in GPAC 1.0.1 allows malicoius users to cause a denial of service ... Moderate Unreviewed
CVE-2021-45291 was published Dec 22, 2021
An invalid free vulnerability exists in gpac 1.1.0 via the gf_svg_delete_attribute_value function... Moderate Unreviewed
CVE-2021-45263 was published Dec 23, 2021
An invalid free vulnerability exists in gpac 1.1.0 via the gf_sg_command_del function, which... Moderate Unreviewed
CVE-2021-45262 was published Dec 23, 2021
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a... Moderate Unreviewed
CVE-2021-45482 was published Dec 26, 2021
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different... Moderate Unreviewed
CVE-2021-45483 was published Dec 26, 2021
Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampled_data_sample (called from... Moderate Unreviewed
CVE-2021-45944 was published Jan 2, 2022
Use after free in tcpslice triggers AddressSanitizer, no other confirmed impact. Moderate Unreviewed
CVE-2021-41043 was published Jan 6, 2022
An issue was discovered in uriparser before 0.9.6. It performs invalid free operations in... Moderate Unreviewed
CVE-2021-46142 was published Jan 7, 2022
An issue was discovered in uriparser before 0.9.6. It performs invalid free operations in... Moderate Unreviewed
CVE-2021-46141 was published Jan 7, 2022
vim is vulnerable to Use After Free Moderate Unreviewed
CVE-2022-0156 was published Jan 11, 2022
An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-free in intrapred.h when... Moderate Unreviewed
CVE-2021-36408 was published Jan 12, 2022
A Segmentation fault casued by heap use after free vulnerability exists in Gpac through 1.0.1 via... Moderate Unreviewed
CVE-2021-40566 was published Jan 13, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed
CVE-2021-34886 was published Jan 14, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed
CVE-2021-34884 was published Jan 14, 2022
Adobe InDesign version 16.4 (and earlier) is affected by a use-after-free vulnerability in the... Moderate Unreviewed
CVE-2021-45059 was published Jan 14, 2022
ProTip! Advisories are also available from the GraphQL API