Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

222 advisories

Loading
There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd... High Unreviewed
CVE-2021-42523 was published Aug 26, 2022
There is a Information Disclosure vulnerability in anjuta/plugins/document-manager/anjuta... High Unreviewed
CVE-2021-42522 was published Aug 26, 2022
A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted... High Unreviewed
CVE-2021-4213 was published Aug 25, 2022
A memory leak was found in Open vSwitch (OVS) during userspace IP fragmentation processing. An... High Unreviewed
CVE-2021-3905 was published Aug 24, 2022
The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory,... High Unreviewed
CVE-2021-33645 was published Aug 11, 2022
The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory,... High Unreviewed
CVE-2021-33646 was published Aug 11, 2022
The TEE_PopulateTransientObject and __utee_from_attr functions in Samsung mTower 0.3.0 allow a... High Unreviewed
CVE-2022-35858 was published Aug 5, 2022
SDL v1.2 was discovered to contain a use-after-free via the XFree function at /src/video/x11... High Unreviewed
CVE-2022-34568 was published Jul 29, 2022
A memory leak flaw was found in the Linux kernel in acrn_dev_ioctl in the drivers/virt/acrn/hsm.c... High Unreviewed
CVE-2022-1651 was published Jul 27, 2022
A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper... High Unreviewed
CVE-2022-22209 was published Jul 21, 2022
A Missing Release of Memory after Effective Lifetime vulnerability in the Application Quality of... High Unreviewed
CVE-2022-22205 was published Jul 21, 2022
DCMTK through 3.6.6 does not handle memory free properly. The program malloc a heap memory for... High Unreviewed
CVE-2021-41687 was published Jun 29, 2022
DCMTK through 3.6.6 does not handle memory free properly. The malloced memory for storing all... High Unreviewed
CVE-2021-41690 was published Jun 29, 2022
Redis v7.0 was discovered to contain a memory leak via the component streamGetEdgeID. High Unreviewed
CVE-2022-33105 was published Jun 24, 2022
Memory leaks in LazyPRM.cpp of OMPL v1.5.0 can cause unexpected behavior. High Unreviewed
CVE-2021-41490 was published Jun 18, 2022
A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote... High Unreviewed
CVE-2021-40633 was published Jun 15, 2022
Possible memory leak due to improper validation of certificate chain length while parsing server... High Unreviewed
CVE-2021-35078 was published Jun 15, 2022
There is a memory dump vulnerability on Netwave IP camera devices at //proc/kcore that allows an... High Unreviewed
CVE-2018-17240 was published Jun 11, 2022
Unicorn Engine v2.0.0-rc7 and below was discovered to contain a memory leak via the function... High Unreviewed
CVE-2022-29693 was published Jun 3, 2022
On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPC (Modular Port... High Unreviewed
CVE-2021-0202 was published May 24, 2022
In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 the remote logging... High Unreviewed
CVE-2021-34598 was published May 24, 2022
pdf2xml v2.0 was discovered to contain a memory leak in the function TextPage::testLinkedText. High Unreviewed
CVE-2020-23876 was published May 24, 2022
There is a Memory leaks vulnerability in Huawei Smartphone.Successful exploitation of this... High Unreviewed
CVE-2021-36993 was published May 24, 2022
A vulnerability in the memory management of Cisco Adaptive Security Appliance (ASA) Software and... High Unreviewed
CVE-2021-34792 was published May 24, 2022
Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine... High Unreviewed
CVE-2021-40114 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API