GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
290 advisories
Filter by severity
malformed proposed intoto entries can cause a panic
Moderate
CVE-2023-33199
was published
for
github.com/sigstore/rekor
(Go)
May 26, 2023
Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the...
Moderate
Unreviewed
CVE-2023-31918
was published
May 12, 2023
Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the...
Moderate
Unreviewed
CVE-2023-31916
was published
May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the...
Moderate
Unreviewed
CVE-2023-31921
was published
May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the vm_loop...
Moderate
Unreviewed
CVE-2023-31920
was published
May 12, 2023
Jerryscript 3.0 *commit 1a2c047) was discovered to contain an Assertion Failure via the component...
Moderate
Unreviewed
CVE-2023-31913
was published
May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the...
Moderate
Unreviewed
CVE-2023-31919
was published
May 12, 2023
llvm-project commit a0138390 was discovered to contain an assertion failure at !replacements...
Moderate
Unreviewed
CVE-2023-29935
was published
May 5, 2023
Denial of service due to reachable assertion in modem while processing filter rule from...
Moderate
Unreviewed
CVE-2022-25675
was published
Dec 13, 2022
`CHECK_EQ` fail via input in `SparseMatrixNNZ`
Moderate
CVE-2022-41901
was published
for
tensorflow
(pip)
Nov 21, 2022
`CHECK` fail via inputs in `SdcaOptimizer`
Moderate
CVE-2022-41899
was published
for
tensorflow
(pip)
Nov 21, 2022
`CHECK_EQ` fail in `tf.raw_ops.TensorListResize`
Moderate
CVE-2022-41893
was published
for
tensorflow
(pip)
Nov 21, 2022
JasPer 3.0.6 allows denial of service via a reachable assertion in the function inttobits in...
Moderate
Unreviewed
CVE-2022-40755
was published
Sep 17, 2022
TensorFlow vulnerable to `CHECK` fail in `Save` and `SaveSlices`
Moderate
CVE-2022-35983
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `ParameterizedTruncatedNormal`
Moderate
CVE-2022-35984
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `LRNGrad`
Moderate
CVE-2022-35985
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `tf.linalg.matrix_rank`
Moderate
CVE-2022-35988
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `MaxPool`
Moderate
CVE-2022-35989
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `FractionalMaxPoolGrad`
Moderate
CVE-2022-35981
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `FakeQuantWithMinMaxVars`
Moderate
CVE-2022-35971
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `AvgPoolGrad`
Moderate
CVE-2022-35968
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `FakeQuantWithMinMaxVarsPerChannelGradient`
Moderate
CVE-2022-35990
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `TensorListScatter` and `TensorListScatterV2`
Moderate
CVE-2022-35991
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `TensorListFromTensor`
Moderate
CVE-2022-35992
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `SetSize`
Moderate
CVE-2022-35993
was published
for
tensorflow
(pip)
Sep 16, 2022
ProTip!
Advisories are also available from the
GraphQL API