GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
52 advisories
Filter by severity
Chrono has potential segfault issue in SPIFFE authenticator
Low
GHSA-45w3-v3g4-54pm
was published
for
parsec-service
(Rust)
Feb 11, 2022
The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the...
Low
Unreviewed
CVE-2009-3094
was published
May 2, 2022
A NULL pointer dereference in sanei_epson_net_read in SANE Backends through 1.0.29 allows a...
Low
Unreviewed
CVE-2020-12867
was published
May 24, 2022
fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer...
Low
Unreviewed
CVE-2019-18885
was published
May 24, 2022
Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and...
Low
Unreviewed
CVE-2020-1814
was published
May 24, 2022
Adobe After Effects version 18.2 (and earlier) is affected by a Null pointer dereference...
Low
Unreviewed
CVE-2021-28601
was published
May 24, 2022
Acrobat Pro DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011...
Low
Unreviewed
CVE-2021-39860
was published
May 24, 2022
A NULL pointer dereference flaw was found in pesign's cms_set_pw_data() function of the...
Low
Unreviewed
CVE-2022-1249
was published
Apr 30, 2022
In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec...
Low
Unreviewed
CVE-2020-8448
was published
May 24, 2022
An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid...
Low
Unreviewed
CVE-2020-15304
was published
May 24, 2022
A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS...
Low
Unreviewed
CVE-2019-18388
was published
May 24, 2022
A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to...
Low
Unreviewed
CVE-2020-8002
was published
May 24, 2022
The krb5_ldap_get_password_policy_from_dn function in plugins/kdb/ldap/libkdb_ldap...
Low
Unreviewed
CVE-2014-5353
was published
May 13, 2022
A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to...
Low
Unreviewed
CVE-2020-12866
was published
May 24, 2022
Null pointer dereference in `EditDistance`
Low
CVE-2021-29564
was published
for
tensorflow
(pip)
May 21, 2021
Null dereference in Grappler's `TrySimplify`
Low
CVE-2021-29616
was published
for
tensorflow
(pip)
May 21, 2021
Reference binding to nullptr in `SdcaOptimizer`
Low
CVE-2021-29572
was published
for
tensorflow
(pip)
May 21, 2021
Undefined behavior in `MaxPool3DGradGrad`
Low
CVE-2021-29574
was published
for
tensorflow
(pip)
May 21, 2021
Null pointer dereference in `SparseFillEmptyRows`
Low
CVE-2021-29565
was published
for
tensorflow
(pip)
May 21, 2021
Reference binding to null pointer in `MatrixDiag*` ops
Low
CVE-2021-29515
was published
for
tensorflow
(pip)
May 21, 2021
Null pointer dereference in `StringNGrams`
Low
CVE-2021-29541
was published
for
tensorflow
(pip)
May 21, 2021
Invalid validation in `SparseMatrixSparseCholesky`
Low
CVE-2021-29530
was published
for
tensorflow
(pip)
May 21, 2021
Type confusion during tensor casts lead to dereferencing null pointers
Low
CVE-2021-29513
was published
for
tensorflow
(pip)
May 21, 2021
Session operations in eager mode lead to null pointer dereferences
Low
CVE-2021-29518
was published
for
tensorflow
(pip)
May 21, 2021
Heap buffer overflow and undefined behavior in `FusedBatchNorm`
Low
CVE-2021-29583
was published
for
tensorflow
(pip)
May 21, 2021
ProTip!
Advisories are also available from the
GraphQL API