Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,909 advisories

Loading
Out-of-bounds Read in OpenCV High
CVE-2017-12598 was published for opencv-contrib-python (pip) Oct 12, 2021
Uncontrolled Resource Consumption in pillow High
CVE-2021-23437 was published for pillow (pip) Sep 7, 2021
Memory access due to code generation flaw in Cranelift module High
CVE-2021-32629 was published for cranelift-codegen (pip) Aug 25, 2021
Out of bounds read in uu_od High
CVE-2021-29934 was published for uu_od (Rust) Aug 25, 2021
tdunlap607
Credited to tdunlap607
Out of bounds read in ordnung High
CVE-2020-35890 was published for ordnung (Rust) Aug 25, 2021
Out of bounds read in bumpalo High
CVE-2020-35861 was published for bumpalo (Rust) Aug 25, 2021
Out of bounds read in simd-json High
CVE-2019-15550 was published for simd-json (Rust) Aug 25, 2021
Heap out of bounds access in sparse reduction operations High
CVE-2021-37635 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference and heap OOB read in operations restoring tensors High
CVE-2021-37639 was published for tensorflow (pip) Aug 25, 2021
Heap buffer overflow in `FractionalAvgPoolGrad` High
CVE-2021-37651 was published for tensorflow (pip) Aug 25, 2021
Heap OOB and CHECK fail in `ResourceGather` High
CVE-2021-37654 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in `ResourceScatterUpdate` High
CVE-2021-37655 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr and heap OOB in binary cwise ops High
CVE-2021-37659 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in boosted trees High
CVE-2021-37664 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in nested `tf.map_fn` with `RaggedTensor`s High
CVE-2021-37679 was published for tensorflow (pip) Aug 25, 2021
Out-of-Bounds Read in Node.js High Unreviewed
CVE-2021-22918 was published Jul 13, 2021
Pillow Out-of-bounds Read vulnerability High
CVE-2021-25288 was published for Pillow (pip) Jun 8, 2021
Out-of-bounds Read in Pillow High
CVE-2021-25287 was published for Pillow (pip) Jun 8, 2021
Out-of-bounds read in Apache Thrift High
CVE-2019-0210 was published for github.com/apache/thrift (Go) May 18, 2021
Out of bounds read in Pillow High
CVE-2021-25291 was published for Pillow (pip) Mar 29, 2021
tdunlap607 sunSUNQ
Credited to tdunlap607 and sunSUNQ
Out of bounds read in Pillow High
CVE-2021-25293 was published for Pillow (pip) Mar 29, 2021
sunSUNQ
Credited to sunSUNQ
Pillow Out-of-bounds Read High
CVE-2020-35653 was published for pillow (pip) Mar 18, 2021
Segfault in `tf.quantization.quantize_and_dequantize` High
CVE-2020-15265 was published for tensorflow (pip) Nov 13, 2020
Data corruption in tensorflow-lite High
CVE-2020-15208 was published for tensorflow (pip) Sep 25, 2020
Out-of-bounds reads in Pillow High
CVE-2020-10177 was published for Pillow (pip) Jul 27, 2020
sunSUNQ
Credited to sunSUNQ
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database