GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
52 advisories
Filter by severity
Out-of-bounds read in TensorFlow possibly causing disclosure of the contents of process memory.
High
CVE-2018-21233
was published
for
tensorflow
(pip)
May 13, 2020
Data corruption in tensorflow-lite
High
CVE-2020-15208
was published
for
tensorflow
(pip)
Sep 25, 2020
Segfault in `tf.quantization.quantize_and_dequantize`
High
CVE-2020-15265
was published
for
tensorflow
(pip)
Nov 13, 2020
Pillow Out-of-bounds Read vulnerability
High
CVE-2021-25288
was published
for
Pillow
(pip)
Jun 8, 2021
Heap OOB in nested `tf.map_fn` with `RaggedTensor`s
High
CVE-2021-37679
was published
for
tensorflow
(pip)
Aug 25, 2021
Reference binding to nullptr and heap OOB in binary cwise ops
High
CVE-2021-37659
was published
for
tensorflow
(pip)
Aug 25, 2021
Heap OOB in `ResourceScatterUpdate`
High
CVE-2021-37655
was published
for
tensorflow
(pip)
Aug 25, 2021
Heap OOB and CHECK fail in `ResourceGather`
High
CVE-2021-37654
was published
for
tensorflow
(pip)
Aug 25, 2021
Heap buffer overflow in `FractionalAvgPoolGrad`
High
CVE-2021-37651
was published
for
tensorflow
(pip)
Aug 25, 2021
Null pointer dereference and heap OOB read in operations restoring tensors
High
CVE-2021-37639
was published
for
tensorflow
(pip)
Aug 25, 2021
Heap out of bounds access in sparse reduction operations
High
CVE-2021-37635
was published
for
tensorflow
(pip)
Aug 25, 2021
Memory access due to code generation flaw in Cranelift module
High
CVE-2021-32629
was published
for
cranelift-codegen
(pip)
Aug 25, 2021
Uncontrolled Resource Consumption in pillow
High
CVE-2021-23437
was published
for
pillow
(pip)
Sep 7, 2021
Out-of-bounds Read in OpenCV
High
CVE-2017-12598
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
Out-of-bounds Read in OpenCV
High
CVE-2017-12599
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
ProTip!
Advisories are also available from the
GraphQL API