Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

432 advisories

Loading
Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon... High Unreviewed
CVE-2021-1971 was published May 24, 2022
A denial-of-service (DoS) vulnerability was discovered in the web user interface of F-Secure... High Unreviewed
CVE-2021-33600 was published May 24, 2022
TensorFlow vulnerable to `CHECK` fail in `RaggedTensorToVariant` Moderate
CVE-2022-36018 was published for tensorflow (pip) Sep 16, 2022
JasPer 3.0.6 allows denial of service via a reachable assertion in the function inttobits in... Moderate Unreviewed
CVE-2022-40755 was published Sep 17, 2022
libjxl 0.6.1 has an assertion failure in LowMemoryRenderPipeline::Init() in render_pipeline... Moderate Unreviewed
CVE-2022-34000 was published Jun 20, 2022
TensorFlow vulnerable to `CHECK` failure in tf.reshape via overflows Moderate
CVE-2022-35934 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to assertion fail on MLIR empty edge names Moderate
CVE-2022-36012 was published for tensorflow (pip) Sep 16, 2022
Possible denial of service scenario due to improper input validation of received NAS OTA message... High Unreviewed
CVE-2021-1982 was published May 24, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing... High Unreviewed
CVE-2021-3326 was published May 24, 2022
A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be... High Unreviewed
CVE-2020-20178 was published May 24, 2022
A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be... High Unreviewed
CVE-2020-25709 was published May 24, 2022
Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an... Moderate Unreviewed
CVE-2020-8617 was published May 24, 2022
An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3... Moderate Unreviewed
CVE-2020-11653 was published May 24, 2022
The Mozilla Fuzzing Team reported potential vulnerabilities present in Thunderbird 91.10. Some of... High Unreviewed
CVE-2022-34484 was published Dec 22, 2022
Mozilla developers Andrew McCreight, Gabriele Svelto, Tom Ritter and the Mozilla Fuzzing Team... Critical Unreviewed
CVE-2022-29917 was published Dec 22, 2022
In Modem 4G RRC, there is a possible system crash due to improper input validation. This could... High Unreviewed
CVE-2022-26446 was published Nov 9, 2022
Denial of service in Modem due to reachable assertion in Snapdragon Mobile High Unreviewed
CVE-2022-25689 was published Dec 13, 2022
Denial of service in Modem due to reachable assertion while processing SIB1 with invalid SCS and... High Unreviewed
CVE-2022-25691 was published Dec 13, 2022
Denial of service in Modem due to reachable assertion while processing the common config... High Unreviewed
CVE-2022-25692 was published Dec 13, 2022
Denial of service in modem due to reachable assertion while processing reconfiguration message in... High Unreviewed
CVE-2022-25702 was published Dec 13, 2022
Denial of service in MODEM due to reachable assertion while processing configuration from network... High Unreviewed
CVE-2022-25673 was published Dec 13, 2022
Denial of service due to reachable assertion in modem while processing filter rule from... Moderate Unreviewed
CVE-2022-25675 was published Dec 13, 2022
Denial of service in MODEM due to reachable assertion while processing SIB1 with invalid... High Unreviewed
CVE-2022-25672 was published Dec 13, 2022
In GPAC 2.1-DEV-rev87-g053aae8-master, function BS_ReadByte() in utils/bitstream.c has a failed... High Unreviewed
CVE-2022-29339 was published May 6, 2022
There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel... Moderate Unreviewed
CVE-2022-29977 was published May 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database