Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

603 advisories

Loading
In usb_gadget_giveback_request of core.c, there is a possible use after free out of bounds read... Moderate Unreviewed
CVE-2021-39792 was published Mar 17, 2022
In gasket_alloc_coherent_memory of gasket_page_table.c, there is a possible memory corruption due... Moderate Unreviewed
CVE-2021-39735 was published Mar 17, 2022
In eicPresentationRetrieveEntryValue of acropora/app/identity/libeic/EicPresentation.c, there is... Moderate Unreviewed
CVE-2021-39727 was published Mar 17, 2022
In unix_scm_to_skb of af_unix.c, there is a possible use after free bug due to a race condition.... Moderate Unreviewed
CVE-2021-0920 was published Dec 16, 2021
When visiting directory listings for `chrome://` URLs as source text, some parameters were... Moderate Unreviewed
CVE-2022-36318 was published Dec 22, 2022
In vow, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-20078 was published Apr 12, 2022
In vow, there is a possible memory corruption due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-20077 was published Apr 12, 2022
A vulnerability has been identified in SCALANCE W1788-1 M12 (All versions < V3.0.0), SCALANCE... Moderate Unreviewed
CVE-2022-27481 was published Apr 13, 2022
In SUB2AF, there is a possible memory corruption due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-20080 was published Apr 12, 2022
FreeBSD's crontab calculates the MD5 sum of the previous and new cronjob to determine if any... Moderate Unreviewed
CVE-2011-1075 was published Apr 22, 2022
Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after... Moderate Unreviewed
CVE-2020-6820 was published May 24, 2022
In decrypt of CryptoPlugin.cpp, there is a possible use-after-free due to a race condition. This... Moderate Unreviewed
CVE-2021-0564 was published May 24, 2022
Description: A race condition was addressed with additional validation. This issue is fixed in... Moderate Unreviewed
CVE-2022-26690 was published May 27, 2022
A race condition was addressed with improved state handling. This issue is fixed in watchOS 8.6,... Moderate Unreviewed
CVE-2022-26765 was published May 27, 2022
Incorrect security UI in popup blocker in Google Chrome on iOS prior to 75.0.3770.80 allowed a... Moderate Unreviewed
CVE-2019-5840 was published May 24, 2022
A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5... Moderate Unreviewed
CVE-2021-28964 was published May 24, 2022
VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the... Moderate Unreviewed
CVE-2015-5191 was published May 17, 2022
In lock_sock_nested of sock.c, there is a possible use after free due to a race condition. This... Moderate Unreviewed
CVE-2022-20154 was published Jun 16, 2022
x86 pv: Race condition in typeref acquisition Xen maintains a type reference count for pages, in... Moderate Unreviewed
CVE-2022-26362 was published Jun 10, 2022
authd sets weak permissions for /etc/ident.key, which allows local users to obtain the key by... Moderate Unreviewed
CVE-2016-4982 was published May 17, 2022
The kernel module has the race condition vulnerability. Successful exploitation of this... Moderate Unreviewed
CVE-2022-31758 was published Jun 14, 2022
In TBD of TBD, there is a possible use-after-free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-20148 was published Jun 16, 2022
In all Android releases from CAF using the Linux kernel, a race condition exists in a QTEE driver... Moderate Unreviewed
CVE-2017-8242 was published May 17, 2022
Dradis Professional Edition before 4.3.0 allows attackers to change an account password via... Moderate Unreviewed
CVE-2022-30028 was published Jun 25, 2022
yadm (yet another dotfile manager) 1.10.0 has a race condition (related to the behavior of git... Moderate Unreviewed
CVE-2017-11353 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API