GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
242 advisories
Filter by severity
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
High
Unreviewed
CVE-2024-21461
was published
Jul 1, 2024
Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-30097
was published
Jun 11, 2024
A double free vulnerability has been reported to affect several QNAP operating system versions....
High
Unreviewed
CVE-2024-27127
was published
May 21, 2024
Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2021-34981
was published
May 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
usb: typec: tcpm: fix double...
High
Unreviewed
CVE-2024-26932
was published
May 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix double...
High
Unreviewed
CVE-2024-26929
was published
May 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix double...
High
Unreviewed
CVE-2024-26930
was published
May 1, 2024
A double free vulnerability was found in QEMU virtio devices (virtio-gpu, virtio-serial-bus,...
High
Unreviewed
CVE-2024-3446
was published
Apr 9, 2024
Microsoft Excel Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26257
was published
Apr 9, 2024
A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf...
High
Unreviewed
CVE-2024-2002
was published
Mar 18, 2024
Windows USB Print Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21445
was published
Mar 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
dm rq: fix double free of...
High
Unreviewed
CVE-2021-46938
was published
Feb 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
uio: Fix use-after-free in...
High
Unreviewed
CVE-2023-52439
was published
Feb 20, 2024
A double-free vulnerability exists in the IP header loopback parsing functionality of Weston...
High
Unreviewed
CVE-2023-38562
was published
Feb 20, 2024
A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS...
High
Unreviewed
CVE-2024-21606
was published
Jan 12, 2024
A double free in Fortinet FortiOS versions 7.0.0 through 7.0.5, FortiPAM version 1.0.0 through 1...
High
Unreviewed
CVE-2023-41678
was published
Dec 13, 2023
In multiple locations, there is a possible way to corrupt memory due to a double free. This could...
High
Unreviewed
CVE-2023-40103
was published
Dec 5, 2023
GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a double free via the...
High
Unreviewed
CVE-2023-48013
was published
Nov 15, 2023
Double free issue exists in Kostac PLC Programming Software Version 1.6.11.0 and earlier....
High
Unreviewed
CVE-2023-41374
was published
Sep 20, 2023
A flaw was found in btrfs_get_root_ref in fs/btrfs/disk-io.c in the btrfs filesystem in the Linux...
High
Unreviewed
CVE-2023-4389
was published
Aug 16, 2023
kdc/do_tgs_req.c in MIT Kerberos 5 (aka krb5) 1.21 before 1.21.2 has a double free that is...
High
Unreviewed
CVE-2023-39975
was published
Aug 16, 2023
xHTTP 72f812d has a double free in close_connection in xhttp.c via a malformed HTTP request method.
High
Unreviewed
CVE-2023-38434
was published
Jul 18, 2023
A double-free flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a...
High
Unreviewed
CVE-2022-4744
was published
Jul 6, 2023
A double-free flaw was found in the Linux kernel’s NTFS3 subsystem in how a user triggers remount...
High
Unreviewed
CVE-2022-3238
was published
Jul 6, 2023
ProTip!
Advisories are also available from the
GraphQL API