Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,944
Erlang
29
GitHub Actions
16
Go
1,729
Maven
4,955
npm
3,489
NuGet
607
pip
3,056
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+

3,879 advisories

A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization... High Unreviewed
CVE-2021-44014 was published Dec 15, 2021
A vulnerability has been identified in JT Utilities (All versions < V13.1.1.0), JTTK (All... High Unreviewed
CVE-2021-44433 was published Dec 15, 2021
A vulnerability has been identified in JT Utilities (All versions < V13.0.3.0), JTTK (All... High Unreviewed
CVE-2021-44447 was published Dec 15, 2021
When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use... Critical Unreviewed
CVE-2021-38504 was published Dec 9, 2021
A use-after-free could have occured when an HTTP2 session object was released on a different... High Unreviewed
CVE-2021-43535 was published Dec 9, 2021
Failure to correctly record the location of live pointers across wasm instance calls resulted in... High Unreviewed
CVE-2021-43539 was published Dec 9, 2021
vim is vulnerable to Use After Free High Unreviewed
CVE-2021-4069 was published Dec 7, 2021
A use-after-free vulnerability exists when reading a DWF/DWFX file using Open Design Alliance... High Unreviewed
CVE-2021-44047 was published Dec 6, 2021
Use After Free in lucet High
CVE-2021-43790 was published for lucet-runtime (Rust) Nov 30, 2021
iximeow acfoltzer
cratelyn aturon alexcrichton aggarwaa
Use after free in Sign-In in Google Chrome prior to 95.0.4638.69 allowed a remote attacker who... High Unreviewed
CVE-2021-37997 was published Nov 24, 2021
Use after free in Web Transport in Google Chrome prior to 95.0.4638.69 allowed a remote attacker... Critical Unreviewed
CVE-2021-38002 was published Nov 24, 2021
vim is vulnerable to Use After Free High Unreviewed
CVE-2021-3974 was published Nov 20, 2021
In mdlactl driver, there is a possible memory corruption due to a use after free. This could lead... High Unreviewed
CVE-2021-0629 was published Nov 19, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to... High Unreviewed
CVE-2021-0670 was published Nov 19, 2021
In edma driver, there is a possible memory corruption due to a use after free. This could lead to... Moderate Unreviewed
CVE-2021-0656 was published Nov 19, 2021
In ccu, there is a possible memory corruption due to a use after free. This could lead to local... Moderate Unreviewed
CVE-2021-0664 was published Nov 19, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to... Moderate Unreviewed
CVE-2021-0667 was published Nov 19, 2021
Adobe Animate version 21.0.9 (and earlier) are affected by a use-after-free vulnerability in the... High Unreviewed
CVE-2021-42269 was published Nov 19, 2021
A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution... High Unreviewed
CVE-2021-42385 was published Nov 17, 2021
Use after free / memory leak in `CollectiveReduceV2` High
CVE-2021-41220 was published for tensorflow (pip) Nov 10, 2021
Use After Free in node.js Critical Unreviewed
CVE-2021-22930 was published Oct 8, 2021
Use after free passing `externref`s to Wasm in Wasmtime Moderate
CVE-2021-39216 was published for wasmtime (Rust) Sep 20, 2021
alexcrichton fitzgen
cfallin
Memory Safety Issue when using patch or merge on state and assign the result back to state Moderate
CVE-2021-39228 was published for tremor-script (Rust) Sep 20, 2021
Use after free in libpulse-binding Moderate
CVE-2018-25001 was published for libpulse-binding (Rust) Aug 30, 2021
use-after-free vulnerability in Rust array-queue Moderate
CVE-2020-35900 was published for array-queue (Rust) Aug 25, 2021
ProTip! Advisories are also available from the GraphQL API