Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

222 advisories

Loading
There is a vulnerability of memory not being released after effective lifetime in the Bastet... High Unreviewed
CVE-2021-40047 was published Mar 11, 2022
A flaw was found in JBoss-client. The vulnerability occurs due to a memory leak on the JBoss... High Unreviewed
CVE-2022-0853 was published Mar 12, 2022
A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted... High Unreviewed
CVE-2021-4213 was published Aug 25, 2022
Memory leak in icmp6 implementation in Linux Kernel 5.13+ allows a remote attacker to DoS a host... High Unreviewed
CVE-2022-0742 was published Mar 19, 2022
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.4),... High Unreviewed
CVE-2021-37205 was published Feb 10, 2022
A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated,... High Unreviewed
CVE-2021-1387 was published May 24, 2022
Unicorn Engine v2.0.0-rc7 and below was discovered to contain a memory leak via the function... High Unreviewed
CVE-2022-29693 was published Jun 3, 2022
Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for... High Unreviewed
CVE-2021-1309 was published May 24, 2022
Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for... High Unreviewed
CVE-2021-1251 was published May 24, 2022
rudp v0.6 was discovered to contain a memory leak in the component main.c. High Unreviewed
CVE-2020-20665 was published May 24, 2022
On Juniper Networks Junos OS platforms with link aggregation (lag) configured, executing any... High Unreviewed
CVE-2021-0230 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when... High Unreviewed
CVE-2021-20216 was published May 24, 2022
Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for... High Unreviewed
CVE-2021-1308 was published May 24, 2022
An uncontrolled resource consumption (memory leak) flaw was found in ZeroMQ's src/xpub.cpp in... High Unreviewed
CVE-2021-20237 was published May 24, 2022
There is a memory dump vulnerability on Netwave IP camera devices at //proc/kcore that allows an... High Unreviewed
CVE-2018-17240 was published Jun 11, 2022
On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPC (Modular Port... High Unreviewed
CVE-2021-0202 was published May 24, 2022
Possible memory leak due to improper validation of certificate chain length while parsing server... High Unreviewed
CVE-2021-35078 was published Jun 15, 2022
A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote... High Unreviewed
CVE-2021-40633 was published Jun 15, 2022
Memory leaks in LazyPRM.cpp of OMPL v1.5.0 can cause unexpected behavior. High Unreviewed
CVE-2021-41490 was published Jun 18, 2022
A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper... High Unreviewed
CVE-2022-22209 was published Jul 21, 2022
A Missing Release of Memory after Effective Lifetime vulnerability in the Application Quality of... High Unreviewed
CVE-2022-22205 was published Jul 21, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to... High Unreviewed
CVE-2022-42311 was published Nov 1, 2022
In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.2, 15.1.x before 15.1.7, 14.1.x... High Unreviewed
CVE-2022-41624 was published Oct 20, 2022
A memory leak in the dwc3_pci_probe() function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel... High Unreviewed
CVE-2019-18813 was published May 24, 2022
A Missing Release of Memory after Effective Lifetime vulnerability in the Juniper Networks Junos... High Unreviewed
CVE-2023-22410 was published Jan 13, 2023
ProTip! Advisories are also available from the GraphQL API