Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,080
Erlang
29
GitHub Actions
19
Go
1,908
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

35 advisories

Loading
Unexpected panics in num-bigint Moderate
GHSA-v935-pqmr-g8v9 was published for num-bigint (Rust) Nov 3, 2021
guidovranken arvidn
An exploitable code execution vulnerability exists in the file system checking functionality of... Moderate Unreviewed
CVE-2020-6070 was published May 24, 2022
On Juniper Networks MX Series with MS-MIC or MS-MPC card configured with NAT64 configuration,... Moderate Unreviewed
CVE-2020-1680 was published May 24, 2022
Incorrect calculation of buffer size vulnerability in Peleton TTR01 up to and including PTV55G... Moderate Unreviewed
CVE-2021-40526 was published May 24, 2022
In typec, there is a possible out of bounds write due to an incorrect calculation of buffer size.... Moderate Unreviewed
CVE-2022-32618 was published Nov 9, 2022
In typec, there is a possible out of bounds write due to an incorrect calculation of buffer size.... Moderate Unreviewed
CVE-2022-32617 was published Nov 9, 2022
A flaw was found in the Linux kernel before 5.9-rc4. A failure of the file system metadata... Moderate Unreviewed
CVE-2020-14385 was published May 24, 2022
A memory corruption vulnerability exists in the ioca_mys_rgb_allocate functionality of Accusoft... Moderate Unreviewed
CVE-2022-22137 was published May 4, 2022
Overflow in `ResizeNearestNeighborGrad` Moderate
CVE-2022-41907 was published for tensorflow (pip) Nov 21, 2022
Overflow in `tf.keras.losses.poisson` Moderate
CVE-2022-41887 was published for tensorflow (pip) Nov 21, 2022
Overflow in `FusedResizeAndPadConv2D` Moderate
CVE-2022-41885 was published for tensorflow (pip) Nov 21, 2022
Overflow in `ImageProjectiveTransformV2` Moderate
CVE-2022-41886 was published for tensorflow (pip) Nov 21, 2022
Heap OOB and null pointer dereference in `RaggedTensorToTensor` Moderate
CVE-2021-29608 was published for tensorflow (pip) May 21, 2021
process_debug_info in dwarf.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2017-14934 was published May 13, 2022
In jpeg, there is a possible use after free due to a logic error. This could lead to local... Moderate Unreviewed
CVE-2022-32649 was published Jan 3, 2023
In mtk-aie, there is a possible use after free due to a logic error. This could lead to local... Moderate Unreviewed
CVE-2022-32651 was published Jan 3, 2023
In mtk-isp, there is a possible use after free due to a logic error. This could lead to local... Moderate Unreviewed
CVE-2022-32650 was published Jan 3, 2023
In sensorhub, there is a possible out of bounds write due to an incorrect calculation of buffer... Moderate Unreviewed
CVE-2022-26474 was published Oct 8, 2022
A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage() at... Moderate Unreviewed
CVE-2022-2520 was published Sep 1, 2022
In pqframework, there is a possible out of bounds write due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20627 was published Mar 7, 2023
An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host... Moderate Unreviewed
CVE-2022-2873 was published Aug 23, 2022
Incorrect buffer size in crossbeam-channel Moderate
CVE-2020-35904 was published for crossbeam-channel (Rust) Aug 25, 2021
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an... Moderate Unreviewed
CVE-2019-3560 was published May 24, 2022
In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer... Moderate Unreviewed
CVE-2022-32624 was published Dec 5, 2022
FTP service in IIS 5.0 and earlier allows remote attackers to cause a denial of service via a... Moderate Unreviewed
CVE-2001-0334 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database