Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

85 advisories

Loading
Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd)... Critical Unreviewed
CVE-2016-6912 was published May 17, 2022
Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows... Critical Unreviewed
CVE-2015-7700 was published May 17, 2022
There is a Double free vulnerability in Smartphone.Successful exploitation of this vulnerability... Critical Unreviewed
CVE-2021-37120 was published Jan 4, 2022
Double free vulnerability in the _zip_dirent_read function in zip_dirent.c in libzip allows... Critical Unreviewed
CVE-2017-12858 was published May 17, 2022
Double Free vulnerability in virtualsquare picoTCP v1.7.0 and picoTCP-NG v2.1 in modules... Critical Unreviewed
CVE-2021-33304 was published Feb 16, 2023
Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms. Critical Unreviewed
CVE-2022-40515 was published Mar 10, 2023
Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3. Critical Unreviewed
CVE-2019-5481 was published May 24, 2022
A double free exists in the MP4StringProperty class in mp4property.cpp in MP4v2 2.0.0. A dangling... Critical Unreviewed
CVE-2018-14054 was published May 13, 2022
Use after free and double free in bitvec Critical
CVE-2020-35862 was published for bitvec (Rust) Aug 25, 2021
Double free in containers Critical
CVE-2021-25907 was published for containers (Rust) Aug 25, 2021
Double free in linea Critical
CVE-2019-16880 was published for linea (Rust) Aug 25, 2021
Double-free in id-map Critical
CVE-2021-30457 was published for id-map (Rust) Aug 25, 2021
Double-free in id-map Critical
CVE-2021-30456 was published for id-map (Rust) Aug 25, 2021
move_elements can double-free objects on panic Critical
CVE-2021-28031 was published for scratchpad (Rust) May 24, 2022
Double free in stack_dst Critical
CVE-2021-28034 was published for stack_dst (Rust) Sep 1, 2021
Double free in smallvec Critical
CVE-2019-15551 was published for smallvec (Rust) Aug 25, 2021
tdunlap607
Double free in smallvec Critical
CVE-2018-20991 was published for smallvec (Rust) Aug 25, 2021
Double free in toodee Critical
CVE-2021-28028 was published for toodee (Rust) Sep 1, 2021
Double free in sys-info Critical
CVE-2020-36434 was published for sys-info (Rust) Aug 25, 2021
Double-free in id-map Critical
CVE-2021-30455 was published for id-map (Rust) Aug 25, 2021
Double free in crossbeam Critical
CVE-2018-20996 was published for crossbeam (Rust) Aug 25, 2021
A double free or use after free could occur after SSL_clear in OpenBSD 7.2 before errata 026 and... Critical Unreviewed
CVE-2023-35784 was published Jun 16, 2023
An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. Because of a double free,... Critical Unreviewed
CVE-2023-49937 was published Dec 14, 2023
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2.... Critical Unreviewed
CVE-2022-28738 was published May 10, 2022
OpenSSH server (sshd) 9.1 introduced a double-free vulnerability during options.kex_algorithms... Critical Unreviewed
CVE-2023-25136 was published Feb 3, 2023
ProTip! Advisories are also available from the GraphQL API