Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,634
NuGet
638
pip
3,249
Pub
10
RubyGems
867
Rust
819
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

244 advisories

Loading
Microsoft Excel Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26257 was published Apr 9, 2024
A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf... High Unreviewed
CVE-2024-2002 was published Mar 18, 2024
Windows USB Print Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21445 was published Mar 12, 2024
In the Linux kernel, the following vulnerability has been resolved: dm rq: fix double free of... High Unreviewed
CVE-2021-46938 was published Feb 27, 2024
In the Linux kernel, the following vulnerability has been resolved: uio: Fix use-after-free in... High Unreviewed
CVE-2023-52439 was published Feb 20, 2024
A double-free vulnerability exists in the IP header loopback parsing functionality of Weston... High Unreviewed
CVE-2023-38562 was published Feb 20, 2024
A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS... High Unreviewed
CVE-2024-21606 was published Jan 12, 2024
A double free in Fortinet FortiOS versions 7.0.0 through 7.0.5, FortiPAM version 1.0.0 through 1... High Unreviewed
CVE-2023-41678 was published Dec 13, 2023
In multiple locations, there is a possible way to corrupt memory due to a double free. This could... High Unreviewed
CVE-2023-40103 was published Dec 5, 2023
GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a double free via the... High Unreviewed
CVE-2023-48013 was published Nov 15, 2023
Double free issue exists in Kostac PLC Programming Software Version 1.6.11.0 and earlier.... High Unreviewed
CVE-2023-41374 was published Sep 20, 2023
A flaw was found in btrfs_get_root_ref in fs/btrfs/disk-io.c in the btrfs filesystem in the Linux... High Unreviewed
CVE-2023-4389 was published Aug 16, 2023
kdc/do_tgs_req.c in MIT Kerberos 5 (aka krb5) 1.21 before 1.21.2 has a double free that is... High Unreviewed
CVE-2023-39975 was published Aug 16, 2023
xHTTP 72f812d has a double free in close_connection in xhttp.c via a malformed HTTP request method. High Unreviewed
CVE-2023-38434 was published Jul 18, 2023
A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a... High Unreviewed
CVE-2022-4744 was published Jul 6, 2023
A double-free flaw was found in the Linux kernel’s NTFS3 subsystem in how a user triggers remount... High Unreviewed
CVE-2022-3238 was published Jul 6, 2023
There exists a use after free/double free in libwebp. An attacker can use the... High Unreviewed
CVE-2023-1999 was published Jun 20, 2023
A vulnerability was found in drivers/cpufreq/qcom-cpufreq-hw.c in cpufreq subsystem in the Linux... High Unreviewed
CVE-2023-3312 was published Jun 19, 2023
Memory corruption in Linux Networking due to double free while handling a hyp-assign. High Unreviewed
CVE-2022-40522 was published Jun 6, 2023
Memory corruption in Linux android due to double free while calling unregister provider after... High Unreviewed
CVE-2022-33227 was published Jun 6, 2023
Memory corruption due to double free in Core while mapping HLOS address to the list. High Unreviewed
CVE-2022-40507 was published Jun 6, 2023
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists... High Unreviewed
CVE-2022-33307 was published Jun 6, 2023
In adreno_set_param of adreno_gpu.c, there is a possible memory corruption due to a double free.... High Unreviewed
CVE-2023-21106 was published May 16, 2023
Memory corruption due to double free in core while initializing the encryption key. High Unreviewed
CVE-2022-33231 was published Apr 13, 2023
hci_conn_cleanup in net/bluetooth/hci_conn.c in the Linux kernel through 6.2.9 has a use-after... High Unreviewed
CVE-2023-28464 was published Mar 31, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database