Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

692 advisories

Loading
Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after... Moderate Unreviewed
CVE-2020-6820 was published May 24, 2022
Concurrent Execution using Shared Resource with Improper Synchronization in Elasticsearch Moderate
CVE-2019-7614 was published for org.elasticsearch:elasticsearch (Maven) May 24, 2022
In decrypt of CryptoPlugin.cpp, there is a possible use-after-free due to a race condition. This... Moderate Unreviewed
CVE-2021-0564 was published May 24, 2022
A race condition was addressed with improved state handling. This issue is fixed in watchOS 8.6,... Moderate Unreviewed
CVE-2022-26765 was published May 27, 2022
Description: A race condition was addressed with additional validation. This issue is fixed in... Moderate Unreviewed
CVE-2022-26690 was published May 27, 2022
Incorrect security UI in popup blocker in Google Chrome on iOS prior to 75.0.3770.80 allowed a... Moderate Unreviewed
CVE-2019-5840 was published May 24, 2022
A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5... Moderate Unreviewed
CVE-2021-28964 was published May 24, 2022
Uncaught Exception (due to a data race) leads to process termination in Waitress Moderate
CVE-2022-31015 was published for waitress (pip) Jun 2, 2022
oakkitten
VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the... Moderate Unreviewed
CVE-2015-5191 was published May 17, 2022
In lock_sock_nested of sock.c, there is a possible use after free due to a race condition. This... Moderate Unreviewed
CVE-2022-20154 was published Jun 16, 2022
x86 pv: Race condition in typeref acquisition Xen maintains a type reference count for pages, in... Moderate Unreviewed
CVE-2022-26362 was published Jun 10, 2022
authd sets weak permissions for /etc/ident.key, which allows local users to obtain the key by... Moderate Unreviewed
CVE-2016-4982 was published May 17, 2022
The kernel module has the race condition vulnerability. Successful exploitation of this... Moderate Unreviewed
CVE-2022-31758 was published Jun 14, 2022
In TBD of TBD, there is a possible use-after-free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-20148 was published Jun 16, 2022
In all Android releases from CAF using the Linux kernel, a race condition exists in a QTEE driver... Moderate Unreviewed
CVE-2017-8242 was published May 17, 2022
Dradis Professional Edition before 4.3.0 allows attackers to change an account password via... Moderate Unreviewed
CVE-2022-30028 was published Jun 25, 2022
yadm (yet another dotfile manager) 1.10.0 has a race condition (related to the behavior of git... Moderate Unreviewed
CVE-2017-11353 was published May 17, 2022
Pulp before 2.8.3 creates a temporary directory during CA key generation in an insecure manner. Moderate Unreviewed
CVE-2016-3106 was published May 17, 2022
In TEEI driver, there is a possible use after free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-21774 was published Jul 7, 2022
In MDP, there is a possible use after free due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2022-21776 was published Jul 7, 2022
Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest... Moderate Unreviewed
CVE-2016-7777 was published May 17, 2022
In GED driver, there is a possible use after free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-21771 was published Jul 7, 2022
In TEEI driver, there is a possible use after free due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-21773 was published Jul 7, 2022
In TEEI driver, there is a possible type confusion due to a race condition. This could lead to... Moderate Unreviewed
CVE-2022-21772 was published Jul 7, 2022
A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing... Moderate Unreviewed
CVE-2020-36557 was published Jul 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database