Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

947 advisories

Loading
Use-after-free vulnerability in the WebSockets implementation in Google Chrome before 11.0.696.57... Moderate Unreviewed
CVE-2011-1449 was published May 13, 2022
Use-after-free vulnerability in the DOM id handling functionality in Google Chrome before 11.0... Moderate Unreviewed
CVE-2011-1454 was published May 13, 2022
Use-after-free vulnerability in WebCore in WebKit before r77705, as used in Google Chrome before... Moderate Unreviewed
CVE-2011-1059 was published May 13, 2022
In Binaryen 1.38.22, there is a use-after-free problem in wasm::WasmBinaryBuilder::visitCall in... Moderate Unreviewed
CVE-2019-7703 was published May 13, 2022
Use-after-free vulnerability in the clntudp_call function in sunrpc/clnt_udp.c in the GNU C... Moderate Unreviewed
CVE-2017-12133 was published May 13, 2022
Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers to cause... Moderate Unreviewed
CVE-2010-4493 was published May 13, 2022
The __do_follow_link function in fs/namei.c in the Linux kernel before 2.6.33 does not properly... Moderate Unreviewed
CVE-2014-0203 was published May 13, 2022
Use-after-free vulnerability in mm/mprotect.c in the Linux kernel before 2.6.37-rc2 allows local... Moderate Unreviewed
CVE-2010-4169 was published May 13, 2022
Use-after-free vulnerability in the path_openat function in fs/namei.c in the Linux kernel 3.x... Moderate Unreviewed
CVE-2015-5706 was published May 13, 2022
The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the... Moderate Unreviewed
CVE-2014-4654 was published May 13, 2022
sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does... Moderate Unreviewed
CVE-2014-4653 was published May 13, 2022
Integer overflow in the ping_init_sock function in net/ipv4/ping.c in the Linux kernel through 3... Moderate Unreviewed
CVE-2014-2851 was published May 13, 2022
Use-after-free vulnerability in the OnWindowRemovingFromRootWindow function in content/browser... Moderate Unreviewed
CVE-2013-6645 was published May 13, 2022
popd in bash might allow local users to bypass the restricted shell and cause a use-after-free... Moderate Unreviewed
CVE-2016-9401 was published May 13, 2022
magick/attribute.c in ImageMagick 7.0.3-2 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2016-7906 was published May 13, 2022
Use-after-free vulnerability in the vmxnet3_io_bar0_write function in hw/net/vmxnet3.c in QEMU ... Moderate Unreviewed
CVE-2016-6833 was published May 13, 2022
Quick Emulator (Qemu) built with the 'chardev' backend support is vulnerable to a use after free... Moderate Unreviewed
CVE-2016-9923 was published May 13, 2022
The TIFFSetProfiles function in coders/tiff.c in ImageMagick 7.0.6 has incorrect expectations... Moderate Unreviewed
CVE-2017-14528 was published May 13, 2022
Use-after-free vulnerability in lighttpd before 1.4.33 allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2013-4560 was published May 13, 2022
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to... Moderate Unreviewed
CVE-2016-3179 was published May 13, 2022
Use-after-free vulnerability in the DestroyImage function in image.c in ImageMagick before 7.0.6... Moderate Unreviewed
CVE-2017-12877 was published May 13, 2022
In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there is a Use-After-Free... Moderate Unreviewed
CVE-2017-15642 was published May 13, 2022
An issue was discovered in Foxit 3D Plugin Beta before 9.4.0.16807 for Foxit Reader and... Moderate Unreviewed
CVE-2019-6984 was published May 13, 2022
The read_stream function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to... Moderate Unreviewed
CVE-2017-8846 was published May 13, 2022
In Long Range Zip (aka lrzip) 0.631, there is a use-after-free in the ucompthread function ... Moderate Unreviewed
CVE-2018-5747 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database