Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,966
Erlang
29
GitHub Actions
16
Go
1,747
Maven
4,975
npm
3,507
NuGet
609
pip
3,072
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+

3,897 advisories

Loading
GPAC 1.0.1 is affected by Use After Free through MP4Box. Moderate Unreviewed
CVE-2022-24576 was published Mar 15, 2022
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows... Moderate Unreviewed
CVE-2021-44964 was published Mar 15, 2022
In aio_poll_complete_work of aio.c, there is a possible memory corruption due to a use after free... High Unreviewed
CVE-2021-39698 was published Mar 17, 2022
In TBD of TBD, there is a possible user after free vulnerability due to a race condition. This... Moderate Unreviewed
CVE-2021-39712 was published Mar 17, 2022
Use after free in screen capture in Google Chrome on ChromeOS prior to 96.0.4664.93 allowed a... High Unreviewed
CVE-2021-4064 was published Dec 24, 2021
Use after free in window manager in Google Chrome on ChromeOS prior to 96.0.4664.93 allowed a... High Unreviewed
CVE-2021-4067 was published Dec 24, 2021
Use after free in UI in Google Chrome on Linux prior to 96.0.4664.93 allowed a remote attacker to... High Unreviewed
CVE-2021-4053 was published Dec 24, 2021
The PowerVR GPU driver allows unprivileged apps to allocated pinned memory, unpin it (which makes... Critical Unreviewed
CVE-2022-20122 was published Aug 25, 2022
The PowerVR GPU driver allows unprivileged apps to allocated pinned memory, unpin it (which makes... Critical Unreviewed
CVE-2021-39815 was published Aug 25, 2022
Use after free in developer tools in Google Chrome prior to 96.0.4664.93 allowed a remote... High Unreviewed
CVE-2021-4063 was published Dec 24, 2021
Use after free in file API in Google Chrome prior to 96.0.4664.93 allowed a remote attacker who... High Unreviewed
CVE-2021-4057 was published Dec 24, 2021
Use after free in web apps in Google Chrome prior to 96.0.4664.93 allowed an attacker who... High Unreviewed
CVE-2021-4052 was published Dec 24, 2021
A use after free issue was addressed with improved memory management. This issue is fixed in tvOS... Critical Unreviewed
CVE-2022-22641 was published Mar 19, 2022
A use after free issue was addressed with improved memory management. This issue is fixed in iOS... High Unreviewed
CVE-2022-22667 was published Mar 19, 2022
A use after free issue was addressed with improved memory management. This issue is fixed in... High Unreviewed
CVE-2022-22669 was published Mar 19, 2022
Use after free in autofill in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to... High Unreviewed
CVE-2021-4065 was published Dec 24, 2021
A use after free issue was addressed with improved memory management. This issue is fixed in tvOS... High Unreviewed
CVE-2022-22614 was published Mar 19, 2022
In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in... Moderate Unreviewed
CVE-2021-45868 was published Mar 19, 2022
A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when... High Unreviewed
CVE-2021-3748 was published Mar 24, 2022
A use after free issue was addressed with improved memory management. This issue is fixed in tvOS... High Unreviewed
CVE-2022-22615 was published Mar 19, 2022
A use-after-free flaw was found in the add_partition in block/partitions/core.c in the Linux... Moderate Unreviewed
CVE-2021-4150 was published Mar 24, 2022
Use After Free in op_is_set_bp in GitHub repository radareorg/radare2 prior to 5.6.6. High Unreviewed
CVE-2022-1031 was published Mar 23, 2022
User after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2. High Unreviewed
CVE-2022-1071 was published Mar 27, 2022
use after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2. Critical Unreviewed
CVE-2022-1106 was published Mar 28, 2022
lrzip v0.641 was discovered to contain a multiple concurrency use-after-free between the... Moderate Unreviewed
CVE-2022-26291 was published Mar 30, 2022
ProTip! Advisories are also available from the GraphQL API