Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

460 advisories

Loading
Systrace before 1.6.0 has insufficient escape policy enforcement. Critical Unreviewed
CVE-2007-4773 was published Apr 21, 2022
A heap double free issue was found in Opensc before version 0.22.0 in sc_pkcs15_free_tokeninfo. Moderate Unreviewed
CVE-2021-42778 was published Apr 19, 2022
drivers/infiniband/ulp/rtrs/rtrs-clt.c in the Linux kernel before 5.16.12 has a double free... High Unreviewed
CVE-2022-29156 was published Apr 14, 2022
Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free. High Unreviewed
CVE-2022-27416 was published Apr 13, 2022
A Double Free vulnerability allows remote malicious actors to execute arbitrary code on DWF file... High Unreviewed
CVE-2022-25796 was published Apr 12, 2022
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a... High Unreviewed
CVE-2022-28388 was published Apr 4, 2022
mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a... High Unreviewed
CVE-2022-28389 was published Apr 4, 2022
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a... High Unreviewed
CVE-2022-28390 was published Apr 4, 2022
A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may... Critical Unreviewed
CVE-2021-23158 was published Mar 17, 2022
In gasket_free_coherent_memory_all of gasket_page_table.c, there is a possible memory corruption... Moderate Unreviewed
CVE-2021-39725 was published Mar 17, 2022
Adobe Bridge version 11.1.1 (and earlier) is affected by a double free vulnerability when parsing... High Unreviewed
CVE-2021-42533 was published Mar 17, 2022
saitoha libsixel v1.8.6 was discovered to contain a double free via the component... High Unreviewed
CVE-2020-36123 was published Mar 11, 2022
In libsixel 1.8.6, sixel_encoder_output_without_macro (called from sixel_encoder_encode_frame in... Moderate Unreviewed
CVE-2021-46700 was published Feb 20, 2022
A double-free was found in the way 389-ds-base handles virtual attributes context in persistent... High Unreviewed
CVE-2021-4091 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46621 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46625 was published Feb 19, 2022
A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user... High Unreviewed
CVE-2021-22600 was published Jan 27, 2022
On BIG-IP versions 15.1.x before 15.1.4.1 and 14.1.x before 14.1.4.5, when the HTTP/2 profile is... High Unreviewed
CVE-2022-23012 was published Jan 26, 2022
The binary MP4Box in Gpac through 1.0.1 has a double-free vulnerability in the iloc_entry_del... Moderate Unreviewed
CVE-2021-40569 was published Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the avc_compute_poc function... High Unreviewed
CVE-2021-40570 was published Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free bug in the av1dmx_finalize function in... Moderate Unreviewed
CVE-2021-40572 was published Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the ilst_box_read function in... High Unreviewed
CVE-2021-40571 was published Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the gf_list_del function in... Moderate Unreviewed
CVE-2021-40573 was published Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the gf_text_get_utf8_line... High Unreviewed
CVE-2021-40574 was published Jan 14, 2022
A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream... Moderate Unreviewed
CVE-2021-37529 was published Jan 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database