Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

99 advisories

Loading
Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after... Moderate Unreviewed
CVE-2020-6820 was published May 24, 2022
GNU patch through 2.7.6 contains a free(p_line[p_end]) Double Free vulnerability in the function... Moderate Unreviewed
CVE-2019-20633 was published May 24, 2022
The HTTP service in quickweb.exe in Pablo Quick 'n Easy Web Server 3.3.8 allows Remote... Moderate Unreviewed
CVE-2019-19943 was published May 24, 2022
A double-free is present in libyang before v1.0-r1 in the function yyparse() when an organization... Moderate Unreviewed
CVE-2019-20397 was published May 24, 2022
A double-free is present in libyang before v1.0-r1 in the function yyparse() when an empty... Moderate Unreviewed
CVE-2019-20393 was published May 24, 2022
A double-free is present in libyang before v1.0-r3 in the function yyparse() when a type... Moderate Unreviewed
CVE-2019-20394 was published May 24, 2022
An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a... Moderate Unreviewed
CVE-2019-15212 was published May 24, 2022
Huawei smart phones Emily-L29C with versions of 8.1.0.132a(C432), 8.1.0.135(C782), 8.1.0.154(C10)... Moderate Unreviewed
CVE-2019-5236 was published May 24, 2022
Double Free in VLC versions <= 3.0.6 leads to a crash. Moderate Unreviewed
CVE-2019-5460 was published May 24, 2022
docker-credential-helpers before 0.6.3 has a double free in the List functions. Moderate Unreviewed
CVE-2019-1020014 was published May 24, 2022
The txrx stats req might be double freed in the pdev detach when the host driver is unloading in... Moderate Unreviewed
CVE-2018-11947 was published May 24, 2022
There is a double free vulnerability on certain drivers of Huawei Mate10 smartphones versions... Moderate Unreviewed
CVE-2019-5219 was published May 24, 2022
Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers... Moderate Unreviewed
CVE-2015-8894 was published May 17, 2022
The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free)... Moderate Unreviewed
CVE-2014-9807 was published May 17, 2022
Double free vulnerability in DfFromLB in docfile.cxx in libfpx 1.3.1_p6 allows remote attackers... Moderate Unreviewed
CVE-2017-12925 was published May 17, 2022
ccsv Double Free vulnerability Moderate
CVE-2017-15364 was published for ccsv (RubyGems) May 17, 2022
net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel... Moderate Unreviewed
CVE-2017-6353 was published May 17, 2022
Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2017-15186 was published May 17, 2022
dwg_decode_eed in decode.c in GNU LibreDWG before 0.6 leads to a double free (in dwg_free_eed in... Moderate Unreviewed
CVE-2018-14524 was published May 14, 2022
** DISPUTED ** The libfsntfs_security_descriptor_values_free function in... Moderate Unreviewed
CVE-2018-11730 was published May 14, 2022
Double free vulnerability in the jasper_image_stop_load function in JasPer 1.900.17 allows remote... Moderate Unreviewed
CVE-2015-5203 was published May 14, 2022
An issue was discovered in GNU Recutils 1.8. There is a double-free problem in the function... Moderate Unreviewed
CVE-2019-6455 was published May 14, 2022
Double-free vulnerability in libavformat/mov.c in FFMPEG in Google Chrome 41.0.2251.0 allows... Moderate Unreviewed
CVE-2015-1207 was published May 14, 2022
A double free when handling responses from a smartcard in sc_file_set_sec_attr in libopensc/sc.c... Moderate Unreviewed
CVE-2018-16423 was published May 14, 2022
A double free when handling responses in read_file in tools/egk-tool.c (aka the eGK card tool) in... Moderate Unreviewed
CVE-2018-16424 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API