Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

108 advisories

Loading
Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2017-15186 was published May 17, 2022
dwg_decode_eed in decode.c in GNU LibreDWG before 0.6 leads to a double free (in dwg_free_eed in... Moderate Unreviewed
CVE-2018-14524 was published May 14, 2022
** DISPUTED ** The libfsntfs_security_descriptor_values_free function in... Moderate Unreviewed
CVE-2018-11730 was published May 14, 2022
Double free vulnerability in the jasper_image_stop_load function in JasPer 1.900.17 allows remote... Moderate Unreviewed
CVE-2015-5203 was published May 14, 2022
An issue was discovered in GNU Recutils 1.8. There is a double-free problem in the function... Moderate Unreviewed
CVE-2019-6455 was published May 14, 2022
Double free vulnerability in the OpenType Font (OTF) driver in Microsoft Windows XP SP2 and SP3,... Moderate Unreviewed
CVE-2010-3957 was published May 14, 2022
Double-free vulnerability in libavformat/mov.c in FFMPEG in Google Chrome 41.0.2251.0 allows... Moderate Unreviewed
CVE-2015-1207 was published May 14, 2022
A double free when handling responses from a smartcard in sc_file_set_sec_attr in libopensc/sc.c... Moderate Unreviewed
CVE-2018-16423 was published May 14, 2022
A double free when handling responses in read_file in tools/egk-tool.c (aka the eGK card tool) in... Moderate Unreviewed
CVE-2018-16424 was published May 13, 2022
A double free when handling responses from an HSM Card in sc_pkcs15emu_sc_hsm_init in libopensc... Moderate Unreviewed
CVE-2018-16425 was published May 13, 2022
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to... Moderate Unreviewed
CVE-2017-7521 was published May 13, 2022
A vulnerability in Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE Software... Moderate Unreviewed
CVE-2018-0160 was published May 13, 2022
Samba from version 4.3.0 and before versions 4.7.12, 4.8.7 and 4.9.3 are vulnerable to a denial... Moderate Unreviewed
CVE-2018-16841 was published May 13, 2022
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a... Moderate Unreviewed
CVE-2018-7523 was published May 13, 2022
The read_MSAT function in ole.c in libxls 1.4.0 has a double free that allows attackers to cause... Moderate Unreviewed
CVE-2018-20450 was published May 13, 2022
Double free vulnerability in libxml2, as used in Google Chrome before 14.0.835.163, allows remote... Moderate Unreviewed
CVE-2011-2834 was published May 13, 2022
Double free vulnerability in the j2k_read_ppm_v3 function in OpenJPEG before r2997, as used in... Moderate Unreviewed
CVE-2015-1239 was published May 13, 2022
In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12... Moderate Unreviewed
CVE-2017-6166 was published May 13, 2022
servers/slapd/back-mdb/search.c in OpenLDAP through 2.4.44 is prone to a double free... Moderate Unreviewed
CVE-2017-9287 was published May 13, 2022
Double free vulnerability in the utrace support in the Linux kernel, probably 2.6.18, in Red Hat... Moderate Unreviewed
CVE-2008-2944 was published May 1, 2022
Double free vulnerability in gtk 2 (gtk2) before 2.2.4 allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2005-0891 was published May 1, 2022
Incorrect returning of an error code in the index.c:read_entry() function leads to a double free... Moderate Unreviewed
CVE-2018-8099 was published Apr 30, 2022
Double free vulnerability in the krb5_rd_cred function for MIT Kerberos 5 (krb5) 1.3.1 and... Moderate Unreviewed
CVE-2004-0643 was published Apr 29, 2022
A heap double free issue was found in Opensc before version 0.22.0 in sc_pkcs15_free_tokeninfo. Moderate Unreviewed
CVE-2021-42778 was published Apr 19, 2022
In gasket_free_coherent_memory_all of gasket_page_table.c, there is a possible memory corruption... Moderate Unreviewed
CVE-2021-39725 was published Mar 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database