Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,398 advisories

Loading
SyncChannel<T> can move 'T: !Send' to other threads High
GHSA-8892-84wf-cg8f was published for signal-simple (Rust) Aug 25, 2021
Slock<T> allows sending non-Send types across thread boundaries High
GHSA-83r8-p8v6-6gfm was published for slock (Rust) Aug 25, 2021
Data races on syncpool High
GHSA-r88h-6987-g79f was published for syncpool (Rust) Aug 25, 2021
WITHDRAWN Moderate
GHSA-8q5c-93vg-c747 was published for toolshed (Rust) Aug 25, 2021 withdrawn
Data races in tiny_future High
GHSA-m296-j53x-xv95 was published for tiny_future (Rust) Aug 25, 2021
Data races in ticketed_lock High
GHSA-gq4h-f254-7cw9 was published for ticketed_lock (Rust) Aug 25, 2021
Data races in v9 High
GHSA-pfjq-935c-4895 was published for v9 (Rust) Aug 25, 2021
Data races in unicycle Moderate
GHSA-7mg7-m5c3-3hqj was published for unicycle (Rust) Aug 25, 2021 withdrawn
crossbeam-deque Data Race before v0.7.4 and v0.8.1 Critical
CVE-2021-32810 was published for crossbeam-deque (Rust) Aug 25, 2021
kmaork
Observable Discrepancy in libsecp256k1-rs Moderate
CVE-2019-20399 was published for libsecp256k1-rs (Rust) Aug 25, 2021
Improper Synchronization and Race Condition in vm-memory High
CVE-2020-13759 was published for vm-memory (Rust) Aug 25, 2021
There is a Encoding timing vulnerability in Huawei Smartphone.Successful exploitation of this... High Unreviewed
CVE-2021-37085 was published Dec 8, 2021
There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this... Moderate Unreviewed
CVE-2021-37082 was published Dec 8, 2021
There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this... Moderate Unreviewed
CVE-2021-37073 was published Dec 8, 2021
Insecure creation of temporary directories in tmate-ssh-server 2.3.0 allows a local attacker to... High Unreviewed
CVE-2021-44513 was published Dec 8, 2021
By misusing a race in our notification code, an attacker could have forcefully hidden the... Moderate Unreviewed
CVE-2021-43538 was published Dec 9, 2021
Multiple vulnerabilities in the authentication mechanism of confd in FortiWeb versions 6.4.1, 6.4... Critical Unreviewed
CVE-2021-41025 was published Dec 9, 2021
There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this... High Unreviewed
CVE-2021-37074 was published Dec 9, 2021
There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this... High Unreviewed
CVE-2021-37069 was published Dec 9, 2021
In synchronous_process_io_entries of lwis_ioctl.c, there is a possible out of bounds write due to... Moderate Unreviewed
CVE-2021-39642 was published Dec 16, 2021
In pf_write_buf of FuseDaemon.cpp, there is possible memory corruption due to a race condition.... High Unreviewed
CVE-2021-0955 was published Dec 16, 2021
In unix_scm_to_skb of af_unix.c, there is a possible use after free bug due to a race condition.... Moderate Unreviewed
CVE-2021-0920 was published Dec 16, 2021
An issue in Atomix v3.1.5 allows attackers to cause a denial of service (DoS) via false member down event messages. Moderate
CVE-2020-35216 was published for io.atomix:atomix (Maven) Dec 17, 2021
A use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem in the Linux kernel through... High Unreviewed
CVE-2021-44733 was published Dec 23, 2021
A race condition was addressed with additional validation. This issue is fixed in tvOS 11.2, iOS... High Unreviewed
CVE-2017-13905 was published Dec 24, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database