GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,587
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,988
Maven 5,170
npm 3,704
NuGet 661
pip 3,332
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,200

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

431 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in VxWorks 6.9 through 7. In the IKE component, a specifically crafted... Moderate Unreviewed

CVE-2021-43268 was published Nov 25, 2021

There is a Incorrect Calculation of Buffer Size vulnerability in Huawei Smartphone.Successful... High Unreviewed

CVE-2021-37072 was published Dec 8, 2021

Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by... Critical Unreviewed

CVE-2021-44732 was published Dec 21, 2021

A Double Free vulnerability exists in filedump.c in GPAC 1.0.1, which could cause a Denail of... Moderate Unreviewed

CVE-2021-45288 was published Dec 22, 2021

There is a Double free vulnerability in Smartphone.Successful exploitation of this vulnerability... Critical Unreviewed

CVE-2021-37120 was published Jan 4, 2022

There is a Double free vulnerability in the AOD module in smartphones. Successful exploitation of... High Unreviewed

CVE-2021-40038 was published Jan 11, 2022

A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the free_stream... Moderate Unreviewed

CVE-2021-37529 was published Jan 13, 2022

The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the gf_text_get_utf8_line... High Unreviewed

CVE-2021-40574 was published Jan 14, 2022

The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the gf_list_del function in... Moderate Unreviewed

CVE-2021-40573 was published Jan 14, 2022

The binary MP4Box in Gpac 1.0.1 has a double-free bug in the av1dmx_finalize function in... Moderate Unreviewed

CVE-2021-40572 was published Jan 14, 2022

The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the ilst_box_read function in... High Unreviewed

CVE-2021-40571 was published Jan 14, 2022

The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the avc_compute_poc function... High Unreviewed

CVE-2021-40570 was published Jan 14, 2022

The binary MP4Box in Gpac through 1.0.1 has a double-free vulnerability in the iloc_entry_del... Moderate Unreviewed

CVE-2021-40569 was published Jan 14, 2022

On BIG-IP versions 15.1.x before 15.1.4.1 and 14.1.x before 14.1.4.5, when the HTTP/2 profile is... High Unreviewed

CVE-2022-23012 was published Jan 26, 2022

A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user... High Unreviewed

CVE-2021-22600 was published Jan 27, 2022

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2021-46625 was published Feb 19, 2022

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2021-46621 was published Feb 19, 2022

A double-free was found in the way 389-ds-base handles virtual attributes context in persistent... High Unreviewed

CVE-2021-4091 was published Feb 19, 2022

In libsixel 1.8.6, sixel_encoder_output_without_macro (called from sixel_encoder_encode_frame in... Moderate Unreviewed

CVE-2021-46700 was published Feb 20, 2022

saitoha libsixel v1.8.6 was discovered to contain a double free via the component... High Unreviewed

CVE-2020-36123 was published Mar 11, 2022

Adobe Bridge version 11.1.1 (and earlier) is affected by a double free vulnerability when parsing... High Unreviewed

CVE-2021-42533 was published Mar 17, 2022

In gasket_free_coherent_memory_all of gasket_page_table.c, there is a possible memory corruption... Moderate Unreviewed

CVE-2021-39725 was published Mar 17, 2022

A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may... Critical Unreviewed

CVE-2021-23158 was published Mar 17, 2022

usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a... High Unreviewed

CVE-2022-28388 was published Apr 4, 2022

ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a... High Unreviewed

CVE-2022-28390 was published Apr 4, 2022

Previous 1 2 3 4 5 … 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

431 advisories