GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
57 advisories
Filter by severity
Out-of-bounds Read in concat-with-sourcemaps
Moderate
GHSA-2xv3-h762-ccxv
was published
for
concat-with-sourcemaps
(npm)
May 29, 2019
Out-of-bounds Read in npmconf
Moderate
GHSA-57cf-349j-352g
was published
for
npmconf
(npm)
Jun 12, 2019
Out-of-Bounds read in stringstream
Moderate
GHSA-qpw2-xchm-655q
was published
for
stringstream
(npm)
Jan 6, 2022
•
withdrawn
Ill-formed headers may lead to unexpected behavior in Istio
Moderate
CVE-2022-31045
was published
for
istio.io/istio
(Go)
Jun 10, 2022
Out-of-bounds Read in fast-string-search
Moderate
CVE-2022-25872
was published
for
fast-string-search
(npm)
Jun 18, 2022
Cap'n Proto and its Rust implementation vulnerable to out-of-bounds read due to logic error handling list-of-list
Moderate
CVE-2022-46149
was published
for
capnp
(Rust)
Dec 5, 2022
Out-of-bounds Read in stringstream
Moderate
CVE-2018-21270
was published
for
stringstream
(npm)
Jun 20, 2019
Heap overflow in `QuantizeAndDequantizeV2`
Moderate
CVE-2022-41910
was published
for
tensorflow
(pip)
Nov 21, 2022
Tensorflow vulnerable to Out-of-Bounds Read
Moderate
CVE-2022-41880
was published
for
tensorflow
(pip)
Nov 22, 2022
Out of bounds segmentation fault due to unequal op inputs in Tensorflow
Moderate
CVE-2022-41883
was published
for
tensorflow
(pip)
Nov 21, 2022
`FractionalMaxPoolGrad` Heap out of bounds read
Moderate
CVE-2022-41897
was published
for
tensorflow
(pip)
Nov 21, 2022
`MirrorPadGrad` heap out of bounds read
Moderate
CVE-2022-41895
was published
for
tensorflow
(pip)
Nov 21, 2022
Out-of-bounds Read in OpenCV
Moderate
CVE-2019-19624
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
Out-of-bounds Read in OpenCV
Moderate
CVE-2019-16249
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
Denial of service in geth
Moderate
CVE-2020-26242
was published
for
github.com/ethereum/go-ethereum
(Go)
Jun 29, 2021
partial_sort contains Out-of-bounds Read in release mode
Moderate
GHSA-5x36-7567-3cw6
was published
for
partial_sort
(Rust)
Feb 28, 2023
Out-of-bounds Read in iText
Moderate
CVE-2022-24198
was published
for
com.itextpdf:itext7-core
(Maven)
Feb 2, 2022
Wasmtime out of bounds read/write with zero-memory-pages configuration
Moderate
CVE-2022-39392
was published
for
wasmtime
(Rust)
Nov 10, 2022
Versionize::deserialize implementation for FamStructWrapper<T> is lacking bound checks, potentially leading to out of bounds memory accesses
Moderate
CVE-2023-28448
was published
for
versionize
(Rust)
Mar 24, 2023
Out-of-bounds Read in base64url
Moderate
GHSA-rvg8-pwq2-xj7q
was published
for
base64url
(npm)
Sep 1, 2020
Out of bounds read in lazy-init
Moderate
CVE-2021-25901
was published
for
lazy-init
(Rust)
Aug 25, 2021
Panic during unmarshal of Hello Verify Request in github.com/pion/dtls/v2
Moderate
GHSA-hxp2-xqf3-v83h
was published
for
github.com/pion/dtls
(Go)
Feb 7, 2023
ProTip!
Advisories are also available from the
GraphQL API