GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,231
Erlang
31
GitHub Actions
20
Go
1,991
Maven
5,000+
npm
3,709
NuGet
661
pip
3,341
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
68 advisories
Filter by severity
Buffer Overflow in node-weakauras-parser
Moderate
GHSA-86mr-6m89-vgj3
was published
for
node-weakauras-parser
(npm)
Sep 3, 2020
Buffer overflow in deprecated USB HALs and stack overflow in USB enumeration
Low
GHSA-f366-4rvv-95x2
was published
for
cryptoauthlib
(pip)
Oct 2, 2020
Arbitrary code execution in clickhouse-driver
Critical
CVE-2020-26759
was published
for
clickhouse-driver
(pip)
Apr 7, 2021
Heap buffer overflow in `RaggedBinCount`
Low
CVE-2021-29512
was published
for
tensorflow
(pip)
May 21, 2021
Heap buffer overflow in `Conv3DBackprop*`
Low
CVE-2021-29520
was published
for
tensorflow
(pip)
May 21, 2021
Heap buffer overflow in `Conv2DBackpropFilter`
Low
CVE-2021-29540
was published
for
tensorflow
(pip)
May 21, 2021
Overflow/denial of service in `tf.raw_ops.ReverseSequence`
Low
CVE-2021-29575
was published
for
tensorflow
(pip)
May 21, 2021
Heap buffer overflow in `BandedTriangularSolve`
Low
CVE-2021-29612
was published
for
tensorflow
(pip)
May 21, 2021
Segfault and heap buffer overflow in `{Experimental,}DatasetToTFRecord`
High
CVE-2021-37650
was published
for
tensorflow
(pip)
Aug 25, 2021
Multiple security issues including data race, buffer overflow, and uninitialized memory drop in arr
Critical
CVE-2020-35887
was published
for
arr
(Rust)
Aug 25, 2021
Improper Restriction of Operations within the Bounds of a Memory Buffer in OpenCV
High
CVE-2017-12601
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
Out-of-bounds Write in OpenCV
High
CVE-2019-5064
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
PCX P mode buffer overflow in Pillow
Critical
CVE-2020-5312
was published
for
Pillow
(pip)
Nov 3, 2021
Access to invalid memory during shape inference in `Cudnn*` ops
High
CVE-2021-41221
was published
for
tensorflow
(pip)
Nov 10, 2021
Heap buffer overflow in `Transpose`
Moderate
CVE-2021-41216
was published
for
tensorflow
(pip)
Nov 10, 2021
Buffer Copy without Checking Size of Input in NumPy
Moderate
CVE-2021-41496
was published
for
numpy
(pip)
Feb 8, 2022
Buffer Overflow in galois_2p8
Critical
CVE-2022-24988
was published
for
galois_2p8
(Rust)
Feb 15, 2022
ProTip!
Advisories are also available from the
GraphQL API