Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,018 advisories

Loading
Null pointer dereference and heap OOB read in operations restoring tensors High
CVE-2021-37639 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in `MatrixDiagPartOp` High
CVE-2021-37643 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in `SparseTensorSliceDataset` High
CVE-2021-37647 was published for tensorflow (pip) Aug 25, 2021
Incorrect validation of `SaveV2` inputs High
CVE-2021-37648 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in `UncompressElement` High
CVE-2021-37649 was published for tensorflow (pip) Aug 25, 2021
NPE in TFLite High
CVE-2021-37681 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in TFLite High
CVE-2021-37688 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in TFLite MLIR optimizations High
CVE-2021-37689 was published for tensorflow (pip) Aug 25, 2021
KateCatlin
Credited to KateCatlin
Go Ethereum Denial of Service High
CVE-2018-19184 was published for github.com/ethereum/go-ethereum (Go) Jun 29, 2021
Duplicate Advisory: gosaml2 is vulnerable to NULL Pointer Dereference from malformed XML signatures High
GHSA-gq5r-cc4w-g8xf was published for github.com/russellhaering/gosaml2 (Go) Jun 23, 2021 withdrawn
tdunlap607
Credited to tdunlap607
Nil dereference in NATS JWT causing DoS of nats-server High
GHSA-hmm9-r2m2-qg9w was published for github.com/nats-io/nats-server/v2 (Go) May 21, 2021
Null pointer dereference in tensorflow-lite High
CVE-2020-15209 was published for tensorflow (pip) Sep 25, 2020
Aubio is vulnerable to a NULL pointer dereference in new_aubio_notes function High
CVE-2018-19802 was published for aubio (pip) Jul 26, 2019
tdunlap607
Credited to tdunlap607
Aubio is vulnerable to a NULL pointer dereference in new_aubio_filterbank High
CVE-2018-19801 was published for aubio (pip) Jul 26, 2019
NULL Pointer Dereference in Google TensorFlow High
CVE-2019-9635 was published for tensorflow (pip) Apr 30, 2019
Null pointer dereference in TensorFlow leads to exploitation High
CVE-2018-7576 was published for tensorflow (pip) Apr 24, 2019
Nokogiri NULL Pointer Dereference High
CVE-2018-14404 was published for nokogiri (RubyGems) Jan 17, 2019
ActiveRecord in Ruby on Rails allows database-query bypass High
CVE-2016-6317 was published for activerecord (RubyGems) Oct 24, 2017
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database