GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
101 advisories
Filter by severity
Duplicate advisory: swift-nio-http2 vulnerable to denial of service via mishandled HPACK variable length integer encoding
High
GHSA-wfvq-p7qf-vv64
was published
for
github.com/apple/swift-nio-http2
(Swift)
Feb 11, 2022
•
withdrawn
Integer overflow in Tensorflow
Moderate
CVE-2022-23575
was published
for
tensorflow
(pip)
Feb 10, 2022
Integer overflow in Tensorflow
Moderate
CVE-2022-23576
was published
for
tensorflow
(pip)
Feb 10, 2022
Memory exhaustion in Tensorflow
Moderate
CVE-2022-21733
was published
for
tensorflow
(pip)
Feb 10, 2022
Overflow and uncaught divide by zero in Tensorflow
Moderate
CVE-2022-21729
was published
for
tensorflow
(pip)
Feb 10, 2022
Integer overflow in TFLite array creation
High
CVE-2022-23558
was published
for
tensorflow
(pip)
Feb 9, 2022
Integer overflow leading to crash in Tensorflow
Moderate
CVE-2022-21738
was published
for
tensorflow
(pip)
Feb 9, 2022
Integer overflows in Tensorflow
Moderate
CVE-2022-23567
was published
for
tensorflow
(pip)
Feb 9, 2022
Integer overflows in Tensorflow
Moderate
CVE-2022-23568
was published
for
tensorflow
(pip)
Feb 9, 2022
Integer Overflow or Wraparound in TensorFlow
Moderate
GHSA-wcv5-vrvr-3rx2
was published
for
tensorflow
(pip)
Feb 9, 2022
Integer overflow in solana_rbpf
High
CVE-2021-46102
was published
for
solana_rbpf
(Rust)
Jan 28, 2022
Buffer overrun in CGI.escape_html
Critical
CVE-2021-41816
was published
for
cgi
(RubyGems)
Dec 14, 2021
Overflow in netlink bytemsg length field allows attacker to override netlink-based container configuration in RunC
Moderate
CVE-2021-43784
was published
for
github.com/opencontainers/runc
(Go)
Dec 7, 2021
Crash in `tf.math.segment_*` operations
Moderate
CVE-2021-41195
was published
for
tensorflow
(pip)
Nov 10, 2021
Crashes due to overflow and `CHECK`-fail in ops with large tensor shapes
Moderate
CVE-2021-41197
was published
for
tensorflow
(pip)
Nov 10, 2021
Overflow/crash in `tf.tile` when tiling tensor is large
Moderate
CVE-2021-41198
was published
for
tensorflow
(pip)
Nov 10, 2021
Overflow/crash in `tf.image.resize` when size is large
Moderate
CVE-2021-41199
was published
for
tensorflow
(pip)
Nov 10, 2021
Missing validation during checkpoint loading
High
CVE-2021-41203
was published
for
tensorflow
(pip)
Nov 10, 2021
Integer Overflow or Wraparound in OpenCV.
High
CVE-2017-1000450
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
ProTip!
Advisories are also available from the
GraphQL API