Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
42
GitHub Actions
43
Go
3,153
Maven
5,000+
npm
5,000+
NuGet
861
pip
4,451
Pub
12
RubyGems
991
Rust
1,179
Swift
50
Unreviewed advisories
All unreviewed
5,000+

661 advisories

Loading
Giflib contains a double-free vulnerability that is the result of a shallow copy in... Moderate Unreviewed
CVE-2026-23868 was published Mar 10, 2026
GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF... High Unreviewed
CVE-2025-69650 was published Mar 6, 2026
Double free vulnerability in the window module. Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2026-28537 was published Mar 5, 2026
Hive has Double-free and Use After Free Vulnerabilities Moderate
GHSA-j8cj-hw74-64jv was published for hivex (Rust) Feb 28, 2026
libtiff up to v4.7.1 was discovered to contain a double free via the component tools/tiffcrop.c. Moderate Unreviewed
CVE-2025-61145 was published Feb 23, 2026
A flaw was found in FFmpeg’s TensorFlow backend within the libavfilter/dnn_backend_tf.c source... Low Unreviewed
CVE-2025-12343 was published Feb 18, 2026
MuPDF versions 1.23.0 through 1.27.0 contain a double-free vulnerability in... Moderate Unreviewed
CVE-2026-25556 was published Feb 6, 2026
In imgsys, there is a possible memory corruption due to improper locking. This could lead to... Moderate Unreviewed
CVE-2026-20415 was published Feb 2, 2026
A Double Free in XSLT `show_index` has been identified in Hiawatha webserver version 11.7 which... Moderate Unreviewed
CVE-2025-57785 was published Jan 26, 2026
A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on... High Unreviewed
CVE-2026-21918 was published Jan 15, 2026
CWE-415: Double Free vulnerability exists that could cause heap memory corruption when the end... High Unreviewed
CVE-2025-13844 was published Jan 15, 2026
Double free vulnerability in the multi-mode input module. Impact: Successful exploitation of this... High Unreviewed
CVE-2025-68968 was published Jan 14, 2026
Windows Remote Procedure Call Interface Definition Language (IDL) Elevation of Privilege... High Unreviewed
CVE-2026-20832 was published Jan 13, 2026
Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2026-20863 was published Jan 13, 2026
Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC... Moderate Unreviewed
CVE-2026-20026 was published Jan 7, 2026
Memory Corruption when multiple threads concurrently access and modify shared resources. High Unreviewed
CVE-2025-47356 was published Jan 7, 2026
Memory corruption occurs when a secure application is launched on a device with insufficient memory. High Unreviewed
CVE-2025-47396 was published Jan 7, 2026
In seninf, there is a possible memory corruption due to a race condition. This could lead to... High Unreviewed
CVE-2025-20801 was published Jan 6, 2026
In display, there is a possible memory corruption due to use after free. This could lead to local... High Unreviewed
CVE-2025-20781 was published Jan 6, 2026
In display, there is a possible memory corruption due to use after free. This could lead to local... Moderate Unreviewed
CVE-2025-20786 was published Jan 6, 2026
In aocc_read of aoc_channel_dev.c, there is a possible double free due to improper locking. This... High Unreviewed
CVE-2025-36919 was published Dec 11, 2025
Withdrawn Advisory: ImageMagick has a use-after-free/double-free risk in Options::fontFamily when clearing family Moderate
CVE-2025-65955 was published for Magick.NET-Q16-AnyCPU (NuGet) Dec 3, 2025 withdrawn
LuiginoC Credited to LuiginoC
In display, there is a possible memory corruption due to use after free. This could lead to local... Moderate Unreviewed
CVE-2025-20775 was published Dec 2, 2025
In aee daemon, there is a possible system crash due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2025-20765 was published Dec 2, 2025
In display, there is a possible memory corruption due to use after free. This could lead to local... Moderate Unreviewed
CVE-2025-20772 was published Dec 2, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database