Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,144
NuGet
735
pip
3,947
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

346 advisories

Loading
A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6. High Unreviewed
CVE-2018-6952 was published May 14, 2022
Double free vulnerability in qedit.dll in DirectShow in Microsoft Windows XP SP2 and SP3, Windows... High Unreviewed
CVE-2014-0301 was published May 14, 2022
Double free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows 8.1,... High Unreviewed
CVE-2015-0058 was published May 14, 2022
A vulnerability was found in gnutls versions from 3.5.8 before 3.6.7. A memory corruption (double... High Unreviewed
CVE-2019-3829 was published May 14, 2022
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and... High Unreviewed
CVE-2018-4990 was published May 14, 2022
Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and... High Unreviewed
CVE-2018-12841 was published May 14, 2022
The server in Dropbear before 2017.75 might allow post-authentication root remote code execution... High Unreviewed
CVE-2017-9078 was published May 13, 2022
This vulnerability allows local attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-10950 was published May 13, 2022
A vulnerability in the Pong tool of Cisco NX-OS Software could allow an unauthenticated, adjacent... High Unreviewed
CVE-2018-0102 was published May 13, 2022
A vulnerability in the web user interface of Cisco IOS XE Software could allow an unauthenticated... High Unreviewed
CVE-2018-0469 was published May 13, 2022
It was found that the raw midi kernel driver does not protect against concurrent access which... High Unreviewed
CVE-2018-10902 was published May 13, 2022
A flaw was found in 389-ds-base before version 1.3.8.4-13. The process ns-slapd crashes in... High Unreviewed
CVE-2018-14638 was published May 13, 2022
Double free vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior caused by... High Unreviewed
CVE-2018-8835 was published May 13, 2022
libarchive version commit 416694915449219d505531b1096384f3237dd6cc onwards (release v3.1.0... High Unreviewed
CVE-2018-1000877 was published May 13, 2022
In MasteringMetadata::Parse of mkvparser.cc there is a possible double free due to an insecure... High Unreviewed
CVE-2018-9553 was published May 13, 2022
Double free vulnerability in the init_ctx_reselect function in the SPNEGO initiator in lib/gssapi... High Unreviewed
CVE-2014-4343 was published May 13, 2022
PackLinuxElf64::unpack in p_lx_elf.cpp in UPX 3.95 allows remote attackers to cause a denial of... High Unreviewed
CVE-2018-11243 was published May 13, 2022
Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function... High Unreviewed
CVE-2018-1000222 was published May 13, 2022
Double free vulnerability in the Theora decoder in Google Chrome before 15.0.874.120 allows... High Unreviewed
CVE-2011-3892 was published May 13, 2022
Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allows remote... High Unreviewed
CVE-2011-2821 was published May 13, 2022
Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8... High Unreviewed
CVE-2010-4494 was published May 13, 2022
Double free vulnerability in the snd_seq_oss_open function in sound/core/seq/oss/seq_oss_init.c... High Unreviewed
CVE-2010-3080 was published May 13, 2022
WriteEPTImage in coders/ept.c in ImageMagick 7.0.7-25 Q16 allows remote attackers to cause a... High Unreviewed
CVE-2018-8804 was published May 13, 2022
QXmlStream in Qt 5.x before 5.11.3 has a double-free or corruption during parsing of a specially... High Unreviewed
CVE-2018-15518 was published May 13, 2022
Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have... High Unreviewed
CVE-2017-5506 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database