Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,985
Erlang
29
GitHub Actions
16
Go
1,774
Maven
4,999
npm
3,541
NuGet
617
pip
3,123
Pub
10
RubyGems
838
Rust
790
Swift
34
Unreviewed advisories
All unreviewed
5,000+

54 advisories

Loading
TensorFlow has Null Pointer Error in RandomShuffle with XLA enable High
CVE-2023-25674 was published for tensorflow (pip) Mar 24, 2023
TensorFlow has Null Pointer Error in QuantizedMatMulWithBiasAndDequantize High
CVE-2023-25670 was published for tensorflow (pip) Mar 24, 2023
TensorFlow has Null Pointer Error in LookupTableImportV2 High
CVE-2023-25672 was published for tensorflow (pip) Mar 24, 2023
TensorFlow has Null Pointer Error in SparseSparseMaximum High
CVE-2023-25665 was published for tensorflow (pip) Mar 24, 2023
TensorFlow has Null Pointer Error in TensorArrayConcatV2 High
CVE-2023-25663 was published for tensorflow (pip) Mar 24, 2023
TensorFlow vulnerable to seg fault in `tf.raw_ops.Print` High
CVE-2023-25660 was published for tensorflow (pip) Mar 24, 2023
TensorFlow has null dereference on ParallelConcat with XLA High
CVE-2023-25676 was published for tensorflow (pip) Mar 24, 2023
`openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference High
GHSA-6hcf-g6gr-hhcr was published for openssl (Rust) Mar 24, 2023
Nil dereference in NATS JWT, DoS of nats-server High
CVE-2020-26521 was published for github.com/nats-io/jwt (Go) Feb 11, 2022
NPE in TFLite High
CVE-2021-37681 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in TFLite High
CVE-2021-37688 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in TFLite MLIR optimizations High
CVE-2021-37689 was published for tensorflow (pip) Aug 25, 2021
KateCatlin
Undefined behavior in `SparseTensorSliceDataset` High
CVE-2022-21736 was published for tensorflow (pip) Feb 9, 2022
Unchecked Return Value to NULL Pointer Dereference in PDFDocumentHandler.cpp High
CVE-2022-39381 was published for hummus (npm) Nov 2, 2022
kilsen through-a-haze
Unchecked return value from xmlTextReaderExpand High
CVE-2022-23476 was published for nokogiri (RubyGems) Dec 8, 2022
Null pointer dereference in `MatrixDiagPartOp` High
CVE-2021-37643 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference and heap OOB read in operations restoring tensors High
CVE-2021-37639 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in `UncompressElement` High
CVE-2021-37649 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in `RaggedTensorToTensor` High
CVE-2021-37638 was published for tensorflow (pip) Aug 25, 2021
NULL Pointer Dereference in OpenCV. High
CVE-2019-14493 was published for opencv-contrib-python (pip) Oct 12, 2021
Null pointer dereference in `CompressElement` High
CVE-2021-37637 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in `SparseTensorSliceDataset` High
CVE-2021-37647 was published for tensorflow (pip) Aug 25, 2021
Incorrect validation of `SaveV2` inputs High
CVE-2021-37648 was published for tensorflow (pip) Aug 25, 2021
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat High
CVE-2020-13934 was published for org.apache.tomcat:tomcat (Maven) Feb 8, 2022
Socket.IO-client Java before 2.0.1 vulnerable to NULL Pointer Dereference High
CVE-2022-25867 was published for io.socket:socket.io-client (Maven) Aug 3, 2022
ProTip! Advisories are also available from the GraphQL API