Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

105 advisories

Loading
A double free vulnerability exists in the Binary File Descriptor (BFD) (aka libbrd) in GNU... Moderate Unreviewed
CVE-2020-16590 was published May 24, 2022
Potential double free in Bluez 5 module of PulseAudio could allow a local attacker to leak memory... Moderate Unreviewed
CVE-2020-15710 was published May 24, 2022
In Wireshark 3.2.0 to 3.2.5, the Kafka protocol dissector could crash. This was addressed in epan... Moderate Unreviewed
CVE-2020-17498 was published May 24, 2022
Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. A double free vulnerability caused... Moderate Unreviewed
CVE-2020-16217 was published May 24, 2022
net-snmp before 5.8.1.pre1 has a double free in usm_free_usmStateReference in snmplib/snmpusm.c... Moderate Unreviewed
CVE-2019-20892 was published May 24, 2022
Double free issue in NPU due to lack of resource locking mechanism to avoid race condition in... Moderate Unreviewed
CVE-2019-14091 was published May 24, 2022
Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after... Moderate Unreviewed
CVE-2020-6820 was published May 24, 2022
GNU patch through 2.7.6 contains a free(p_line[p_end]) Double Free vulnerability in the function... Moderate Unreviewed
CVE-2019-20633 was published May 24, 2022
The HTTP service in quickweb.exe in Pablo Quick 'n Easy Web Server 3.3.8 allows Remote... Moderate Unreviewed
CVE-2019-19943 was published May 24, 2022
A double-free is present in libyang before v1.0-r1 in the function yyparse() when an organization... Moderate Unreviewed
CVE-2019-20397 was published May 24, 2022
A double-free is present in libyang before v1.0-r1 in the function yyparse() when an empty... Moderate Unreviewed
CVE-2019-20393 was published May 24, 2022
A double-free is present in libyang before v1.0-r3 in the function yyparse() when a type... Moderate Unreviewed
CVE-2019-20394 was published May 24, 2022
An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a... Moderate Unreviewed
CVE-2019-15212 was published May 24, 2022
Huawei smart phones Emily-L29C with versions of 8.1.0.132a(C432), 8.1.0.135(C782), 8.1.0.154(C10)... Moderate Unreviewed
CVE-2019-5236 was published May 24, 2022
Double Free in VLC versions <= 3.0.6 leads to a crash. Moderate Unreviewed
CVE-2019-5460 was published May 24, 2022
docker-credential-helpers before 0.6.3 has a double free in the List functions. Moderate Unreviewed
CVE-2019-1020014 was published May 24, 2022
The txrx stats req might be double freed in the pdev detach when the host driver is unloading in... Moderate Unreviewed
CVE-2018-11947 was published May 24, 2022
There is a double free vulnerability on certain drivers of Huawei Mate10 smartphones versions... Moderate Unreviewed
CVE-2019-5219 was published May 24, 2022
Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers... Moderate Unreviewed
CVE-2015-8894 was published May 17, 2022
The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free)... Moderate Unreviewed
CVE-2014-9807 was published May 17, 2022
Double free vulnerability in DfFromLB in docfile.cxx in libfpx 1.3.1_p6 allows remote attackers... Moderate Unreviewed
CVE-2017-12925 was published May 17, 2022
ccsv Double Free vulnerability Moderate
CVE-2017-15364 was published for ccsv (RubyGems) May 17, 2022
net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel... Moderate Unreviewed
CVE-2017-6353 was published May 17, 2022
Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2017-15186 was published May 17, 2022
dwg_decode_eed in decode.c in GNU LibreDWG before 0.6 leads to a double free (in dwg_free_eed in... Moderate Unreviewed
CVE-2018-14524 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database