Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

459 advisories

Loading
Pillow Integer overflow in Map.c Moderate
CVE-2016-9189 was published for pillow (pip) Jul 24, 2018
Integer Overflow or Wraparound and Use of a Broken or Risky Cryptographic Algorithm in bcrypt Moderate
CVE-2020-7689 was published for bcrypt (npm) Aug 20, 2020
Integer overflow in TFLite concatentation Moderate
CVE-2021-29601 was published for tensorflow (pip) May 21, 2021
Integer overflow in TFLite memory allocation Moderate
CVE-2021-29605 was published for tensorflow (pip) May 21, 2021
Integer Overflow in Chunked Transfer-Encoding Moderate
CVE-2021-32714 was published for hyper (Rust) Jul 12, 2021
mattiasgrenfeldt asta12
Integer Overflow in openssl-src Moderate
CVE-2021-23841 was published for openssl-src (Rust) Aug 25, 2021
another-rex
Overflow/crash in `tf.image.resize` when size is large Moderate
CVE-2021-41199 was published for tensorflow (pip) Nov 10, 2021
Overflow/crash in `tf.tile` when tiling tensor is large Moderate
CVE-2021-41198 was published for tensorflow (pip) Nov 10, 2021
Crashes due to overflow and `CHECK`-fail in ops with large tensor shapes Moderate
CVE-2021-41197 was published for tensorflow (pip) Nov 10, 2021
Crash in `tf.math.segment_*` operations Moderate
CVE-2021-41195 was published for tensorflow (pip) Nov 10, 2021
Overflow in netlink bytemsg length field allows attacker to override netlink-based container configuration in RunC Moderate
CVE-2021-43784 was published for github.com/opencontainers/runc (Go) Dec 7, 2021
felixwilhelm
In valid_ipc_dram_addr of cm_access_control.c, there is a possible out of bounds read due to an... Moderate Unreviewed
CVE-2021-1047 was published Dec 16, 2021
In getService of IServiceManager.cpp, there is a possible unhandled exception due to an integer... Moderate Unreviewed
CVE-2021-0919 was published Dec 16, 2021
In apusys, there is a possible memory corruption due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2021-0901 was published Dec 18, 2021
In ccu driver, there is a possible out of bounds read due to an integer overflow. This could lead... Moderate Unreviewed
CVE-2021-0677 was published Dec 18, 2021
Integer Overflow or Wraparound in TensorFlow Moderate
GHSA-wcv5-vrvr-3rx2 was published for tensorflow (pip) Feb 9, 2022
Memory exhaustion in Tensorflow Moderate
CVE-2022-21733 was published for tensorflow (pip) Feb 10, 2022
Stormshield Network Security (SNS) 3.x has an Integer Overflow in the high-availability component. Moderate Unreviewed
CVE-2021-3398 was published Feb 11, 2022
In ccu driver, there is a possible memory corruption due to an integer overflow. This could lead... Moderate Unreviewed
CVE-2022-20039 was published Feb 11, 2022
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. Moderate Unreviewed
CVE-2022-25315 was published Feb 19, 2022
An integer overflow was found in the QEMU implementation of VMWare's paravirtual RDMA device in... Moderate Unreviewed
CVE-2021-3607 was published Feb 25, 2022
Some Huawei products have an integer overflow vulnerability. Successful exploitation of this... Moderate Unreviewed
CVE-2021-22441 was published Feb 26, 2022
An integer overflow in DTSStreamReader::findFrame() of tsMuxer git-2678966 allows attackers to... Moderate Unreviewed
CVE-2021-45860 was published Mar 3, 2022
A flaw was found in the Linux kernel. A denial of service problem is identified if an extent tree... Moderate Unreviewed
CVE-2021-3428 was published Mar 5, 2022
A flaw found in function dataWindowForTile() of IlmImf/ImfTiledMisc.cpp. An attacker who is able... Moderate Unreviewed
CVE-2021-20303 was published Mar 5, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database