Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,391 advisories

Loading
Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can... High Unreviewed
CVE-2022-23772 was published Feb 12, 2022
Possible integer overflow due to improper fragment datatype while calculating number of fragments... High Unreviewed
CVE-2021-35074 was published Feb 12, 2022
Improper validation of data length received from DMA buffer can lead to memory corruption. in... High Unreviewed
CVE-2021-35069 was published Feb 12, 2022
Duplicate advisory: swift-nio-http2 vulnerable to denial of service via mishandled HPACK variable length integer encoding High
GHSA-wfvq-p7qf-vv64 was published for github.com/apple/swift-nio-http2 (Swift) Feb 11, 2022 withdrawn
Integer overflow in Tensorflow High
CVE-2022-23575 was published for tensorflow (pip) Feb 10, 2022
Integer overflow in Tensorflow High
CVE-2022-23576 was published for tensorflow (pip) Feb 10, 2022
Overflow and uncaught divide by zero in Tensorflow High
CVE-2022-21729 was published for tensorflow (pip) Feb 10, 2022
In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for... High Unreviewed
CVE-2021-46143 was published Feb 10, 2022
nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. High Unreviewed
CVE-2022-22826 was published Feb 10, 2022
storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. High Unreviewed
CVE-2022-22827 was published Feb 10, 2022
lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. High Unreviewed
CVE-2022-22825 was published Feb 10, 2022
Integer overflow in Tensorflow High
CVE-2022-23562 was published for tensorflow (pip) Feb 9, 2022
Integer overflow in TFLite High
CVE-2022-23559 was published for tensorflow (pip) Feb 9, 2022
Integer overflow in TFLite array creation High
CVE-2022-23558 was published for tensorflow (pip) Feb 9, 2022
Integer overflow leading to crash in Tensorflow High
CVE-2022-21738 was published for tensorflow (pip) Feb 9, 2022
Integer overflows in Tensorflow High
CVE-2022-23567 was published for tensorflow (pip) Feb 9, 2022
Integer overflows in Tensorflow High
CVE-2022-23568 was published for tensorflow (pip) Feb 9, 2022
Integer overflow in TensorFlow High
CVE-2022-23587 was published for tensorflow (pip) Feb 9, 2022
Integer overflow in Tensorflow High
CVE-2022-21727 was published for tensorflow (pip) Feb 9, 2022
IIPImage High Resolution Streaming Image Server prior to commit... High Unreviewed
CVE-2021-46389 was published Feb 8, 2022
MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an application crash. High Unreviewed
CVE-2021-46667 was published Feb 2, 2022
A denial of service vulnerability exists in the netserver recv_command functionality of reolink... High Unreviewed
CVE-2022-21801 was published Jan 29, 2022
Integer overflow in solana_rbpf High
CVE-2021-46102 was published for solana_rbpf (Rust) Jan 28, 2022
There is an integer overflow in the ION driver "/dev/ion" of Allwinner R818 SoC Android Q SDK V1... High Unreviewed
CVE-2021-38787 was published Jan 20, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... High Unreviewed
CVE-2021-44711 was published Jan 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database