GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
432 advisories
Filter by severity
An issue was discovered in VxWorks 6.9 through 7. In the IKE component, a specifically crafted...
Moderate
Unreviewed
CVE-2021-43268
was published
Nov 25, 2021
There is a Incorrect Calculation of Buffer Size vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-37072
was published
Dec 8, 2021
Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by...
Critical
Unreviewed
CVE-2021-44732
was published
Dec 21, 2021
A Double Free vulnerability exists in filedump.c in GPAC 1.0.1, which could cause a Denail of...
Moderate
Unreviewed
CVE-2021-45288
was published
Dec 22, 2021
There is a Double free vulnerability in Smartphone.Successful exploitation of this vulnerability...
Critical
Unreviewed
CVE-2021-37120
was published
Jan 4, 2022
There is a Double free vulnerability in the AOD module in smartphones. Successful exploitation of...
High
Unreviewed
CVE-2021-40038
was published
Jan 11, 2022
A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream...
Moderate
Unreviewed
CVE-2021-37529
was published
Jan 13, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the gf_text_get_utf8_line...
High
Unreviewed
CVE-2021-40574
was published
Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the gf_list_del function in...
Moderate
Unreviewed
CVE-2021-40573
was published
Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the ilst_box_read function in...
High
Unreviewed
CVE-2021-40571
was published
Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free bug in the av1dmx_finalize function in...
Moderate
Unreviewed
CVE-2021-40572
was published
Jan 14, 2022
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the avc_compute_poc function...
High
Unreviewed
CVE-2021-40570
was published
Jan 14, 2022
The binary MP4Box in Gpac through 1.0.1 has a double-free vulnerability in the iloc_entry_del...
Moderate
Unreviewed
CVE-2021-40569
was published
Jan 14, 2022
On BIG-IP versions 15.1.x before 15.1.4.1 and 14.1.x before 14.1.4.5, when the HTTP/2 profile is...
High
Unreviewed
CVE-2022-23012
was published
Jan 26, 2022
A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user...
High
Unreviewed
CVE-2021-22600
was published
Jan 27, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46625
was published
Feb 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-46621
was published
Feb 19, 2022
A double-free was found in the way 389-ds-base handles virtual attributes context in persistent...
High
Unreviewed
CVE-2021-4091
was published
Feb 19, 2022
In libsixel 1.8.6, sixel_encoder_output_without_macro (called from sixel_encoder_encode_frame in...
Moderate
Unreviewed
CVE-2021-46700
was published
Feb 20, 2022
saitoha libsixel v1.8.6 was discovered to contain a double free via the component...
High
Unreviewed
CVE-2020-36123
was published
Mar 11, 2022
Adobe Bridge version 11.1.1 (and earlier) is affected by a double free vulnerability when parsing...
High
Unreviewed
CVE-2021-42533
was published
Mar 17, 2022
In gasket_free_coherent_memory_all of gasket_page_table.c, there is a possible memory corruption...
Moderate
Unreviewed
CVE-2021-39725
was published
Mar 17, 2022
A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may...
Critical
Unreviewed
CVE-2021-23158
was published
Mar 17, 2022
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a...
High
Unreviewed
CVE-2022-28388
was published
Apr 4, 2022
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a...
High
Unreviewed
CVE-2022-28390
was published
Apr 4, 2022
ProTip!
Advisories are also available from the
GraphQL API