GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
445 advisories
Filter by severity
Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers...
Moderate
Unreviewed
CVE-2015-8894
was published
May 17, 2022
drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via...
Critical
Unreviewed
CVE-2019-15504
was published
May 24, 2022
In the Linux kernel before 4.16.4, a double free vulnerability in the f_midi_set_alt function of...
Critical
Unreviewed
CVE-2018-20961
was published
May 24, 2022
An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL...
High
Unreviewed
CVE-2016-8360
was published
May 17, 2022
The plist_free_data function in plist.c in libplist allows attackers to cause a denial of service...
High
Unreviewed
CVE-2017-5836
was published
May 17, 2022
A vulnerability found in gnutls. This security flaw happens because of a double free error occurs...
High
Unreviewed
CVE-2022-2509
was published
Aug 2, 2022
In TrustZone in all Android releases from CAF using the Linux kernel, a Double Free vulnerability...
High
Unreviewed
CVE-2015-9007
was published
May 17, 2022
rpmsg_virtio_add_ctrl_dev in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4...
Moderate
Unreviewed
CVE-2022-34494
was published
Jun 27, 2022
rpmsg_probe in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4 has a double free.
Moderate
Unreviewed
CVE-2022-34495
was published
Jun 27, 2022
Potential double free of buffer during string decoding
Moderate
CVE-2022-31117
was published
for
ujson
(pip)
Jul 5, 2022
LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwg_read_file at...
High
Unreviewed
CVE-2022-33033
was published
Jun 24, 2022
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue...
High
Unreviewed
CVE-2017-2425
was published
May 17, 2022
Creolabs Gravity version 1.0 is vulnerable to a Double Free in gravity_value resulting...
Critical
Unreviewed
CVE-2017-1000072
was published
May 17, 2022
In all Android releases from CAF using the Linux kernel, a double free vulnerability exists in a...
High
Unreviewed
CVE-2017-7373
was published
May 17, 2022
In closef of label_backends_android.c, there is a possible way to corrupt memory due to a double...
High
Unreviewed
CVE-2021-39806
was published
Jun 16, 2022
A double free issue was discovered in radare2 in cmd_info.c:cmd_info(). Successful exploitation...
Critical
Unreviewed
CVE-2020-27794
was published
Aug 20, 2022
Memory corruption in video due to double free while parsing 3gp clip with invalid meta data atoms...
Critical
Unreviewed
CVE-2022-22086
was published
Jun 15, 2022
Memory corruption in multimedia driver due to double free while processing data from user in...
High
Unreviewed
CVE-2022-22103
was published
Jun 15, 2022
In ccu, there is a possible memory corruption due to a double free. This could lead to local...
Moderate
Unreviewed
CVE-2022-21758
was published
Jun 7, 2022
A double free in cleanup_index in index.c in Halibut 1.2 allows an attacker to cause a denial of...
High
Unreviewed
CVE-2021-42613
was published
May 25, 2022
In rw_t3t_process_error of rw_t3t.cc, there is a possible double free due to uninitialized data....
High
Unreviewed
CVE-2021-0473
was published
May 24, 2022
Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute,...
High
Unreviewed
CVE-2022-25660
was published
Oct 19, 2022
Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after...
Moderate
Unreviewed
CVE-2020-6820
was published
May 24, 2022
Double free vulnerability in the php_wddx_process_data function in wddx.c in the WDDX extension...
Critical
Unreviewed
CVE-2016-5772
was published
May 14, 2022
The server in Dropbear before 2017.75 might allow post-authentication root remote code execution...
High
Unreviewed
CVE-2017-9078
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API