Please submit CVE to https://github.com/taosdata/TDengine/security/advisories.
Security: taosdata/TDengine
Security
SECURITY.md
-
Use-After-Free and Double-Free Vulnerability in tableMetaCommit Error Handling PathGHSA-4h6w-f7vf-96xj published
Jun 27, 2026 by zitsenLow -
Double-Free and Use-After-Free in buildTriggerPartitionForCreateStream via Error Handling PathGHSA-c97w-rp4j-2jc9 published
Jun 27, 2026 by zitsenLow -
Use-After-Free (UAF) Vulnerability in monGenDnodeStatusInfoTable via Dangling gauge PointerGHSA-vqj6-pwq9-qc5j published
Jun 27, 2026 by zitsenHigh -
Double-Free Vulnerability in createStreamReqBuildTriggerSelect due to Improper Error Path Ownership TrackingGHSA-998r-264c-5jcv published
Jun 27, 2026 by zitsenLow -
Double Free Vulnerability in projectApplyFunction via Error Handling PathGHSA-f8pf-77fh-53wv published
Jun 27, 2026 by zitsenLow -
[TD-SEC-2026-018] Double-Free / Use-After-Free Vulnerability in Parser Module via Mismatched Error Handling in createSimpleSubQStmtGHSA-v8cj-fw82-9jjf published
Jun 27, 2026 by zitsenHigh -
KILL SSMIGRATE missing authorization lets low-privilege users interrupt shared-storage migrationsGHSA-67g2-ffwr-7x9h published
Jun 26, 2026 by zitsenModerate -
Unauthenticated Remote Denial of Service via Out-of-Bounds Read in transDecompressMsgGHSA-8pc4-p252-f5m7 published
Jun 26, 2026 by zitsenHigh -
Off-by-One Buffer Overflow in TDengineGHSA-4v5h-fxjw-vrmq published
Jun 26, 2026 by zitsenHigh -
Authenticated Out-of-Bounds Read in SQL Lexer tGetTokenGHSA-5r9p-3j4f-gmgp published
Jun 26, 2026 by zitsenModerate
Learn more about advisories related to taosdata/TDengine in the GitHub Advisory Database