Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

244 advisories

Loading
There is a Incorrect Calculation of Buffer Size vulnerability in Huawei Smartphone.Successful... High Unreviewed
CVE-2021-37072 was published Dec 8, 2021
There is a Double free vulnerability in the AOD module in smartphones. Successful exploitation of... High Unreviewed
CVE-2021-40038 was published Jan 11, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the gf_text_get_utf8_line... High Unreviewed
CVE-2021-40574 was published Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the ilst_box_read function in... High Unreviewed
CVE-2021-40571 was published Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the avc_compute_poc function... High Unreviewed
CVE-2021-40570 was published Jan 14, 2022
On BIG-IP versions 15.1.x before 15.1.4.1 and 14.1.x before 14.1.4.5, when the HTTP/2 profile is... High Unreviewed
CVE-2022-23012 was published Jan 26, 2022
A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user... High Unreviewed
CVE-2021-22600 was published Jan 27, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46625 was published Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2021-46621 was published Feb 19, 2022
A double-free was found in the way 389-ds-base handles virtual attributes context in persistent... High Unreviewed
CVE-2021-4091 was published Feb 19, 2022
saitoha libsixel v1.8.6 was discovered to contain a double free via the component... High Unreviewed
CVE-2020-36123 was published Mar 11, 2022
Adobe Bridge version 11.1.1 (and earlier) is affected by a double free vulnerability when parsing... High Unreviewed
CVE-2021-42533 was published Mar 17, 2022
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a... High Unreviewed
CVE-2022-28390 was published Apr 4, 2022
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a... High Unreviewed
CVE-2022-28388 was published Apr 4, 2022
mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a... High Unreviewed
CVE-2022-28389 was published Apr 4, 2022
A Double Free vulnerability allows remote malicious actors to execute arbitrary code on DWF file... High Unreviewed
CVE-2022-25796 was published Apr 12, 2022
Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free. High Unreviewed
CVE-2022-27416 was published Apr 13, 2022
drivers/infiniband/ulp/rtrs/rtrs-clt.c in the Linux kernel before 5.16.12 has a double free... High Unreviewed
CVE-2022-29156 was published Apr 14, 2022
There is a pointer double free vulnerability in Some MIUI Services. When a function is called,... High Unreviewed
CVE-2020-14123 was published Apr 23, 2022
Double-free vulnerability in CVS 1.11.4 and earlier allows remote attackers to cause a denial of... High Unreviewed
CVE-2003-0015 was published Apr 29, 2022
Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2003-0545 was published Apr 29, 2022
Double free vulnerability in mshtml.dll for certain versions of Internet Explorer 6.x allows... High Unreviewed
CVE-2003-1048 was published Apr 29, 2022
Double free vulnerabilities in the error handling code for ASN.1 decoders in the (1) Key... High Unreviewed
CVE-2004-0642 was published Apr 29, 2022
Double free vulnerabilities in error handling code in krb524d for MIT Kerberos 5 (krb5) 1.2.8 and... High Unreviewed
CVE-2004-0772 was published Apr 29, 2022
In binder_alloc_free_page of binder_alloc.c, there is a possible double free due to improper... High Unreviewed
CVE-2019-1999 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API