GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
484 advisories
Filter by severity
Potential double free of buffer during string decoding
Moderate
CVE-2022-31117
was published
for
ujson
(pip)
Jul 5, 2022
DCMTK through 3.6.6 does not handle memory free properly. The object in the program is free but...
High
Unreviewed
CVE-2021-41688
was published
Jun 29, 2022
rpmsg_probe in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4 has a double free.
Moderate
Unreviewed
CVE-2022-34495
was published
Jun 27, 2022
rpmsg_virtio_add_ctrl_dev in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4...
Moderate
Unreviewed
CVE-2022-34494
was published
Jun 27, 2022
LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwg_read_file at...
High
Unreviewed
CVE-2022-33033
was published
Jun 24, 2022
An issue in dlt_config_file_parser.c of dlt-daemon v2.18.8 allows attackers to cause a double...
High
Unreviewed
CVE-2022-31291
was published
Jun 17, 2022
Arrow2 allows double free in `safe` code
High
GHSA-5j8w-r7g8-5472
was published
for
arrow2
(Rust)
Jun 16, 2022
In closef of label_backends_android.c, there is a possible way to corrupt memory due to a double...
High
Unreviewed
CVE-2021-39806
was published
Jun 16, 2022
Memory corruption in multimedia driver due to double free while processing data from user in...
High
Unreviewed
CVE-2022-22103
was published
Jun 15, 2022
Memory corruption in video due to double free while parsing 3gp clip with invalid meta data atoms...
Critical
Unreviewed
CVE-2022-22086
was published
Jun 15, 2022
In ccu, there is a possible memory corruption due to a double free. This could lead to local...
Moderate
Unreviewed
CVE-2022-21758
was published
Jun 7, 2022
A double free in cleanup_index in index.c in Halibut 1.2 allows an attacker to cause a denial of...
High
Unreviewed
CVE-2021-42613
was published
May 25, 2022
Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.
Critical
Unreviewed
CVE-2019-5481
was published
May 24, 2022
In GateKeeper::MintAuthToken of gatekeeper.cpp in Android 7.1.1, 7.1.2, 8.0, 8.1 and 9, there is...
High
Unreviewed
CVE-2019-2115
was published
May 24, 2022
A double-free can happen in idr_remove_all() in lib/idr.c in the Linux kernel 2.6 branch. An...
High
Unreviewed
CVE-2019-3896
was published
May 24, 2022
An issue was discovered in Softing Industrial Automation OPC UA C++ SDK before 5.66, and...
High
Unreviewed
CVE-2021-40873
was published
May 24, 2022
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it...
High
Unreviewed
CVE-2021-1119
was published
May 24, 2022
An exploitable double-free vulnerability exists in the JavaScript implementation of Nitro Pro PDF...
High
Unreviewed
CVE-2021-21797
was published
May 24, 2022
An improper error handling in Mediatek RRC Protocol stack prior to SMR Oct-2021 Release 1 allows...
Moderate
Unreviewed
CVE-2021-25477
was published
May 24, 2022
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP)...
High
Unreviewed
CVE-2021-1565
was published
May 24, 2022
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP)...
High
Unreviewed
CVE-2021-34768
was published
May 24, 2022
Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP)...
High
Unreviewed
CVE-2021-34769
was published
May 24, 2022
When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances...
Critical
Unreviewed
CVE-2021-22945
was published
May 24, 2022
An issue was discovered in libredwg through v0.10.1.3751. dwg_free_MATERIAL_private() in dwg.spec...
High
Unreviewed
CVE-2021-39528
was published
May 24, 2022
Possible memory corruption due to improper check when application loader object is explicitly...
High
Unreviewed
CVE-2021-1934
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API