Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

104 advisories

Loading
dwg_decode_eed in decode.c in GNU LibreDWG before 0.6 leads to a double free (in dwg_free_eed in... Moderate Unreviewed
CVE-2018-14524 was published May 14, 2022
Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2017-15186 was published May 17, 2022
Samba from version 4.3.0 and before versions 4.7.12, 4.8.7 and 4.9.3 are vulnerable to a denial... Moderate Unreviewed
CVE-2018-16841 was published May 13, 2022
net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel... Moderate Unreviewed
CVE-2017-6353 was published May 17, 2022
A Double Free vulnerability exists in filedump.c in GPAC 1.0.1, which could cause a Denail of... Moderate Unreviewed
CVE-2021-45288 was published Dec 22, 2021
Double free vulnerability in DfFromLB in docfile.cxx in libfpx 1.3.1_p6 allows remote attackers... Moderate Unreviewed
CVE-2017-12925 was published May 17, 2022
A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream... Moderate Unreviewed
CVE-2021-37529 was published Jan 13, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the gf_list_del function in... Moderate Unreviewed
CVE-2021-40573 was published Jan 14, 2022
In libsixel 1.8.6, sixel_encoder_output_without_macro (called from sixel_encoder_encode_frame in... Moderate Unreviewed
CVE-2021-46700 was published Feb 20, 2022
A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was... Moderate Unreviewed
CVE-2021-3564 was published May 24, 2022
There is a double free or corruption in rotateImage() at tiffcrop.c:8839 found in libtiff 4.4.0rc1 Moderate Unreviewed
CVE-2022-2519 was published Sep 1, 2022
Memory handling issues in xcb Moderate
CVE-2020-36205 was published for xcb (Rust) Aug 25, 2021
ccsv Double Free vulnerability Moderate
CVE-2017-15364 was published for ccsv (RubyGems) May 17, 2022
Double Free in VLC versions <= 3.0.6 leads to a crash. Moderate Unreviewed
CVE-2019-5460 was published May 24, 2022
An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a... Moderate Unreviewed
CVE-2019-15212 was published May 24, 2022
A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers... Moderate Unreviewed
CVE-2022-3707 was published Mar 7, 2023
The binary MP4Box in Gpac 1.0.1 has a double-free bug in the av1dmx_finalize function in... Moderate Unreviewed
CVE-2021-40572 was published Jan 14, 2022
The binary MP4Box in Gpac through 1.0.1 has a double-free vulnerability in the iloc_entry_del... Moderate Unreviewed
CVE-2021-40569 was published Jan 14, 2022
insert_slice_clone can double drop if Clone panics. Moderate
CVE-2021-26954 was published for qwutils (Rust) May 24, 2022
A double-free is present in libyang before v1.0-r1 in the function yyparse() when an organization... Moderate Unreviewed
CVE-2019-20397 was published May 24, 2022
A double-free is present in libyang before v1.0-r1 in the function yyparse() when an empty... Moderate Unreviewed
CVE-2019-20393 was published May 24, 2022
A double-free is present in libyang before v1.0-r3 in the function yyparse() when a type... Moderate Unreviewed
CVE-2019-20394 was published May 24, 2022
hnswlib Double Free vulnerability Moderate
CVE-2023-37365 was published for hnswlib (pip) Jun 30, 2023
Double Free vulnerability in Nothings Stb Image.h v.2.28 allows a remote attacker to cause a... Moderate Unreviewed
CVE-2023-43281 was published Oct 25, 2023
Bytecode Alliance wasm-micro-runtime (aka WebAssembly Micro Runtime or WAMR) before 1.3.0 can... Moderate Unreviewed
CVE-2023-52284 was published Dec 31, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database