Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,986
Erlang
29
GitHub Actions
16
Go
1,776
Maven
5,000+
npm
3,542
NuGet
617
pip
3,124
Pub
10
RubyGems
838
Rust
790
Swift
34
Unreviewed advisories
All unreviewed
5,000+

54 advisories

Loading
Null pointer deference in cache High
CVE-2021-25903 was published for cache (Rust) Aug 25, 2021
Null pointer deference in av-data High
CVE-2021-25904 was published for av-data (Rust) Aug 25, 2021
NULL Pointer Dereference in HyperLedger Fabric High
CVE-2021-43667 was published for github.com/hyperledger/fabric (Go) May 25, 2022
NumPy NULL Pointer Dereference High
CVE-2021-41495 was published for numpy (pip) Feb 8, 2022
Socket.IO-client Java before 2.0.1 vulnerable to NULL Pointer Dereference High
CVE-2022-25867 was published for io.socket:socket.io-client (Maven) Aug 3, 2022
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat High
CVE-2020-13934 was published for org.apache.tomcat:tomcat (Maven) Feb 8, 2022
Incorrect validation of `SaveV2` inputs High
CVE-2021-37648 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in `SparseTensorSliceDataset` High
CVE-2021-37647 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in `CompressElement` High
CVE-2021-37637 was published for tensorflow (pip) Aug 25, 2021
NULL Pointer Dereference in OpenCV. High
CVE-2019-14493 was published for opencv-contrib-python (pip) Oct 12, 2021
Null pointer dereference in `RaggedTensorToTensor` High
CVE-2021-37638 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference and heap OOB read in operations restoring tensors High
CVE-2021-37639 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in `UncompressElement` High
CVE-2021-37649 was published for tensorflow (pip) Aug 25, 2021
Null pointer dereference in `MatrixDiagPartOp` High
CVE-2021-37643 was published for tensorflow (pip) Aug 25, 2021
Unchecked return value from xmlTextReaderExpand High
CVE-2022-23476 was published for nokogiri (RubyGems) Dec 8, 2022
Unchecked Return Value to NULL Pointer Dereference in PDFDocumentHandler.cpp High
CVE-2022-39381 was published for hummus (npm) Nov 2, 2022
kilsen through-a-haze
Undefined behavior in `SparseTensorSliceDataset` High
CVE-2022-21736 was published for tensorflow (pip) Feb 9, 2022
Null pointer dereference in TFLite MLIR optimizations High
CVE-2021-37689 was published for tensorflow (pip) Aug 25, 2021
KateCatlin
Null pointer dereference in TFLite High
CVE-2021-37688 was published for tensorflow (pip) Aug 25, 2021
NPE in TFLite High
CVE-2021-37681 was published for tensorflow (pip) Aug 25, 2021
Nil dereference in NATS JWT, DoS of nats-server High
CVE-2020-26521 was published for github.com/nats-io/jwt (Go) Feb 11, 2022
`openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference High
GHSA-6hcf-g6gr-hhcr was published for openssl (Rust) Mar 24, 2023
TensorFlow has null dereference on ParallelConcat with XLA High
CVE-2023-25676 was published for tensorflow (pip) Mar 24, 2023
TensorFlow vulnerable to seg fault in `tf.raw_ops.Print` High
CVE-2023-25660 was published for tensorflow (pip) Mar 24, 2023
TensorFlow has Null Pointer Error in TensorArrayConcatV2 High
CVE-2023-25663 was published for tensorflow (pip) Mar 24, 2023
ProTip! Advisories are also available from the GraphQL API