GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,634
NuGet
638
pip
3,249
Pub
10
RubyGems
867
Rust
819
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
244 advisories
Filter by severity
Microsoft Excel Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26257
was published
Apr 9, 2024
A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf...
High
Unreviewed
CVE-2024-2002
was published
Mar 18, 2024
Windows USB Print Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21445
was published
Mar 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
dm rq: fix double free of...
High
Unreviewed
CVE-2021-46938
was published
Feb 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
uio: Fix use-after-free in...
High
Unreviewed
CVE-2023-52439
was published
Feb 20, 2024
A double-free vulnerability exists in the IP header loopback parsing functionality of Weston...
High
Unreviewed
CVE-2023-38562
was published
Feb 20, 2024
A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS...
High
Unreviewed
CVE-2024-21606
was published
Jan 12, 2024
A double free in Fortinet FortiOS versions 7.0.0 through 7.0.5, FortiPAM version 1.0.0 through 1...
High
Unreviewed
CVE-2023-41678
was published
Dec 13, 2023
In multiple locations, there is a possible way to corrupt memory due to a double free. This could...
High
Unreviewed
CVE-2023-40103
was published
Dec 5, 2023
GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a double free via the...
High
Unreviewed
CVE-2023-48013
was published
Nov 15, 2023
Double free issue exists in Kostac PLC Programming Software Version 1.6.11.0 and earlier....
High
Unreviewed
CVE-2023-41374
was published
Sep 20, 2023
A flaw was found in btrfs_get_root_ref in fs/btrfs/disk-io.c in the btrfs filesystem in the Linux...
High
Unreviewed
CVE-2023-4389
was published
Aug 16, 2023
kdc/do_tgs_req.c in MIT Kerberos 5 (aka krb5) 1.21 before 1.21.2 has a double free that is...
High
Unreviewed
CVE-2023-39975
was published
Aug 16, 2023
xHTTP 72f812d has a double free in close_connection in xhttp.c via a malformed HTTP request method.
High
Unreviewed
CVE-2023-38434
was published
Jul 18, 2023
A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a...
High
Unreviewed
CVE-2022-4744
was published
Jul 6, 2023
A double-free flaw was found in the Linux kernel’s NTFS3 subsystem in how a user triggers remount...
High
Unreviewed
CVE-2022-3238
was published
Jul 6, 2023
There exists a use after free/double free in libwebp. An attacker can use the...
High
Unreviewed
CVE-2023-1999
was published
Jun 20, 2023
A vulnerability was found in drivers/cpufreq/qcom-cpufreq-hw.c in cpufreq subsystem in the Linux...
High
Unreviewed
CVE-2023-3312
was published
Jun 19, 2023
Memory corruption in Linux Networking due to double free while handling a hyp-assign.
High
Unreviewed
CVE-2022-40522
was published
Jun 6, 2023
Memory corruption in Linux android due to double free while calling unregister provider after...
High
Unreviewed
CVE-2022-33227
was published
Jun 6, 2023
Memory corruption due to double free in Core while mapping HLOS address to the list.
High
Unreviewed
CVE-2022-40507
was published
Jun 6, 2023
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists...
High
Unreviewed
CVE-2022-33307
was published
Jun 6, 2023
In adreno_set_param of adreno_gpu.c, there is a possible memory corruption due to a double free....
High
Unreviewed
CVE-2023-21106
was published
May 16, 2023
Memory corruption due to double free in core while initializing the encryption key.
High
Unreviewed
CVE-2022-33231
was published
Apr 13, 2023
hci_conn_cleanup in net/bluetooth/hci_conn.c in the Linux kernel through 6.2.9 has a use-after...
High
Unreviewed
CVE-2023-28464
was published
Mar 31, 2023
ProTip!
Advisories are also available from the
GraphQL API