Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,286
Erlang
31
GitHub Actions
21
Go
2,058
Maven
5,000+
npm
3,742
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

88 advisories

Loading
Double free vulnerability in the format printer in PHP 7.x before 7.0.1 allows remote attackers... Critical Unreviewed
CVE-2015-8880 was published May 13, 2022
libelf/elf_end.c in elfutils 0.173 allows remote attackers to cause a denial of service (double... Critical Unreviewed
CVE-2018-16402 was published May 13, 2022
An issue was discovered in GNU gettext 0.19.8. There is a double free in default_add_message in... Critical Unreviewed
CVE-2018-18751 was published May 13, 2022
Double free in alpm-rs Critical
CVE-2020-35885 was published for alpm-rs (Rust) Aug 25, 2021
A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecified impact and attack vectors. Critical Unreviewed
CVE-2017-1000232 was published May 13, 2022
Double free vulnerability in MIT Kerberos 5 (aka krb5) allows attackers to have unspecified... Critical Unreviewed
CVE-2017-11462 was published May 13, 2022
The Quagga BGP daemon (bgpd) prior to version 1.2.3 can double-free memory when processing... Critical Unreviewed
CVE-2018-5379 was published May 13, 2022
A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive... Critical Unreviewed
CVE-2018-0101 was published May 13, 2022
The function `read_data()` in security.c in curl before version 7.51.0 is vulnerable to memory... Critical Unreviewed
CVE-2016-8619 was published May 13, 2022
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006... Critical Unreviewed
CVE-2018-12782 was published May 14, 2022
GraphicsMagick 1.3.26 has double free vulnerabilities in the ReadOneJNGImage() function in coders... Critical Unreviewed
CVE-2017-11139 was published May 14, 2022
Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through... Critical Unreviewed
CVE-2017-14952 was published May 14, 2022
The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the gdImage*Ptr() functions in... Critical Unreviewed
CVE-2019-6978 was published May 14, 2022
In the Linux kernel before 4.7, the amd_gpio_remove function in drivers/pinctrl/pinctrl-amd.c... Critical Unreviewed
CVE-2017-18174 was published May 14, 2022
In bnep_data_ind of bnep_main.c, there is a possible remote code execution due to a double free.... Critical Unreviewed
CVE-2018-9356 was published May 14, 2022
The libcurl API function called `curl_maprintf()` before version 7.51.0 can be tricked into doing... Critical Unreviewed
CVE-2016-8618 was published May 14, 2022
An issue was discovered in GNU libcdio before 2.0.0. There is a double free in get_cdtext_generic... Critical Unreviewed
CVE-2017-18201 was published May 14, 2022
Double free vulnerability in the gnutls_x509_ext_import_proxy function in GnuTLS before 3.3.26... Critical Unreviewed
CVE-2017-5334 was published May 14, 2022
The csnmp_read_table function in snmp.c in the SNMP plugin in collectd before 5.6.3 is... Critical Unreviewed
CVE-2017-16820 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2015-9165 was published May 14, 2022
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile, Snapdragon... Critical Unreviewed
CVE-2018-3593 was published May 14, 2022
The mad_decoder_run() function in decoder.c in Underbit libmad through 0.15.1b allows remote... Critical Unreviewed
CVE-2018-7263 was published May 14, 2022
Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by... Critical Unreviewed
CVE-2021-44732 was published Dec 21, 2021
A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors. Critical Unreviewed
CVE-2017-1000231 was published May 14, 2022
Double free vulnerability in the _php_mb_regex_ereg_replace_exec function in php_mbregex.c in the... Critical Unreviewed
CVE-2016-5768 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database