Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

565 advisories

Loading
Double free in WebGL in Google Chrome prior to 102.0.5005.115 allowed a remote attacker to... High Unreviewed
CVE-2022-2008 was published Jul 29, 2022
SimpleNetwork TCP Server commit 29bc615f0d9910eb2f59aa8dff1f54f0e3af4496 was discovered to... High Unreviewed
CVE-2022-36234 was published Jul 29, 2022
io_uring use work_flags to determine which identity need to grab from the calling process to make... High Unreviewed
CVE-2022-2327 was published Jul 23, 2022
HiCOS’ client-side citizen certificate component has a double free vulnerability. An... Moderate Unreviewed
CVE-2022-32962 was published Jul 21, 2022
Potential double free of buffer during string decoding Moderate
CVE-2022-31117 was published for ujson (pip) Jul 5, 2022
JustAnotherArchivist
DCMTK through 3.6.6 does not handle memory free properly. The object in the program is free but... High Unreviewed
CVE-2021-41688 was published Jun 29, 2022
rpmsg_probe in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4 has a double free. Moderate Unreviewed
CVE-2022-34495 was published Jun 27, 2022
rpmsg_virtio_add_ctrl_dev in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4... Moderate Unreviewed
CVE-2022-34494 was published Jun 27, 2022
LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwg_read_file at... High Unreviewed
CVE-2022-33033 was published Jun 24, 2022
An issue in dlt_config_file_parser.c of dlt-daemon v2.18.8 allows attackers to cause a double... High Unreviewed
CVE-2022-31291 was published Jun 17, 2022
Arrow2 allows double free in `safe` code High
GHSA-5j8w-r7g8-5472 was published for arrow2 (Rust) Jun 16, 2022
In closef of label_backends_android.c, there is a possible way to corrupt memory due to a double... High Unreviewed
CVE-2021-39806 was published Jun 16, 2022
Memory corruption in video due to double free while parsing 3gp clip with invalid meta data atoms... Critical Unreviewed
CVE-2022-22086 was published Jun 15, 2022
Memory corruption in multimedia driver due to double free while processing data from user in... High Unreviewed
CVE-2022-22103 was published Jun 15, 2022
In ccu, there is a possible memory corruption due to a double free. This could lead to local... Moderate Unreviewed
CVE-2022-21758 was published Jun 7, 2022
A double free in cleanup_index in index.c in Halibut 1.2 allows an attacker to cause a denial of... High Unreviewed
CVE-2021-42613 was published May 25, 2022
Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3. Critical Unreviewed
CVE-2019-5481 was published May 24, 2022
In GateKeeper::MintAuthToken of gatekeeper.cpp in Android 7.1.1, 7.1.2, 8.0, 8.1 and 9, there is... High Unreviewed
CVE-2019-2115 was published May 24, 2022
A double-free can happen in idr_remove_all() in lib/idr.c in the Linux kernel 2.6 branch. An... High Unreviewed
CVE-2019-3896 was published May 24, 2022
An issue was discovered in Softing Industrial Automation OPC UA C++ SDK before 5.66, and... High Unreviewed
CVE-2021-40873 was published May 24, 2022
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it... High Unreviewed
CVE-2021-1119 was published May 24, 2022
An exploitable double-free vulnerability exists in the JavaScript implementation of Nitro Pro PDF... High Unreviewed
CVE-2021-21797 was published May 24, 2022
An improper error handling in Mediatek RRC Protocol stack prior to SMR Oct-2021 Release 1 allows... Moderate Unreviewed
CVE-2021-25477 was published May 24, 2022
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP)... High Unreviewed
CVE-2021-1565 was published May 24, 2022
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP)... High Unreviewed
CVE-2021-34768 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database