Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,017
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

54 advisories

Loading
An uninitialized pointer dereference in the NasPdu::NasPdu component of OpenAirInterface CN5G AMF... Moderate Unreviewed
CVE-2024-24449 was published Nov 15, 2024
Segfault while copying constant resource tensor Moderate
CVE-2021-41204 was published for tensorflow (pip) Nov 10, 2021
Reference binding to nullptr in boosted trees Moderate
CVE-2021-37662 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr in `MatrixSetDiagV*` ops Moderate
CVE-2021-37658 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr in `MatrixDiagV*` ops Moderate
CVE-2021-37657 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr in `RaggedTensorToSparse` Moderate
CVE-2021-37656 was published for tensorflow (pip) Aug 25, 2021
In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k_htc: Use... Moderate Unreviewed
CVE-2024-49938 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: mac80211: track only QoS... Moderate Unreviewed
CVE-2021-47602 was published Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix uninitialized... Moderate Unreviewed
CVE-2024-50087 was published Oct 29, 2024
SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via... Moderate Unreviewed
CVE-2024-8645 was published Sep 10, 2024
NULL pointer access vulnerability in the clock module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-32998 was published May 14, 2024
A access of uninitialized pointer vulnerability [CWE-824] in Fortinet FortiProxy version 7.2.0... Moderate Unreviewed
CVE-2023-29178 was published Jun 13, 2023
Adobe Substance 3D Painter versions 8.3.0 (and earlier) is affected by an Access of Uninitialized... Moderate Unreviewed
CVE-2023-29286 was published May 12, 2023
Multiple uninitialized pointer vulnerabilities when parsing a specially crafted file in Esri... Moderate Unreviewed
CVE-2021-29095 was published May 24, 2022
EnterpriseDB Advanced Server 8.2 does not properly handle certain debugging function calls that... Moderate Unreviewed
CVE-2007-4639 was published May 1, 2022
CoreText in Apple Mac OS X 10.4 through 10.4.10 allows attackers to cause a denial of service ... Moderate Unreviewed
CVE-2007-4682 was published May 1, 2022
ldbm_back_exop_passwd in the back-ldbm backend in passwd.c for OpenLDAP 2.1.12 and earlier, when... Moderate Unreviewed
CVE-2003-1201 was published Apr 29, 2022
The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1... Moderate Unreviewed
CVE-2009-1721 was published May 2, 2022
lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA... Moderate Unreviewed
CVE-2009-1415 was published May 2, 2022
A user able to control file input to Gerbv, between versions 2.4.0 and 2.10.0, can cause a crash... Moderate Unreviewed
CVE-2023-4508 was published Aug 25, 2023
Adobe Prelude versions 22.6 and earlier are affected by an Access of Uninitialized Pointer... Moderate Unreviewed
CVE-2023-44362 was published Dec 13, 2023
lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1... Moderate Unreviewed
CVE-2023-36054 was published Aug 7, 2023
Adobe Audition version 24.0 (and earlier) and 23.6.1 (and earlier) are affected by an Access of... Moderate Unreviewed
CVE-2023-47053 was published Nov 16, 2023
Adobe Substance 3D Stager version 2.0.1 (and earlier) is affected by an Access of Uninitialized... Moderate Unreviewed
CVE-2023-26387 was published Apr 13, 2023
Adobe Substance 3D Stager version 2.0.1 (and earlier) is affected by an Access of Uninitialized... Moderate Unreviewed
CVE-2023-26386 was published Apr 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database