GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,233
Erlang
31
GitHub Actions
20
Go
1,992
Maven
5,000+
npm
3,709
NuGet
661
pip
3,346
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
55 advisories
Filter by severity
Uninitialized memory access in TensorFlow
Moderate
CVE-2020-26266
was published
for
tensorflow
(pip)
Dec 10, 2020
Heap out of bounds access in MakeEdge in TensorFlow
Moderate
CVE-2020-26271
was published
for
tensorflow
(pip)
Dec 10, 2020
Undefined behavior and `CHECK`-fail in `FractionalMaxPoolGrad`
Low
CVE-2021-29580
was published
for
tensorflow
(pip)
May 21, 2021
Segfault in `CTCBeamSearchDecoder`
Low
CVE-2021-29581
was published
for
tensorflow
(pip)
May 21, 2021
Potential memory exposure in dns-packet
High
CVE-2021-23386
was published
for
dns-packet
(npm)
May 24, 2021
Use of unitialized value in TFLite
Moderate
CVE-2021-37682
was published
for
tensorflow
(pip)
Aug 25, 2021
Uninitialized memory exposure in claxon
Moderate
CVE-2018-20992
was published
for
claxon
(Rust)
Aug 25, 2021
Exposure of uninitialized memory in memoffset
High
CVE-2019-15553
was published
for
memoffset
(Rust)
Aug 25, 2021
Drop of uninitialized memory in Ozone
Critical
CVE-2020-35878
was published
for
ozone
(Rust)
Aug 25, 2021
Multiple security issues including data race, buffer overflow, and uninitialized memory drop in arr
Critical
CVE-2020-35888
was published
for
arr
(Rust)
Aug 25, 2021
Free of uninitialized memory in autorand
High
CVE-2020-36210
was published
for
autorand
(Rust)
Aug 25, 2021
Use of Uninitialized Resource in truetype
High
CVE-2021-28030
was published
for
truetype
(Rust)
Aug 25, 2021
Deserializing an array can free uninitialized memory in byte_struct
Critical
CVE-2021-28033
was published
for
byte_struct
(Rust)
Aug 25, 2021
Read on uninitialized buffer in postscript
High
CVE-2021-26953
was published
for
postscript
(Rust)
Aug 25, 2021
Read of uninitialized memory in cdr
Critical
CVE-2021-26305
was published
for
cdr
(Rust)
Aug 25, 2021
Use of Uninitialized Resource in ms3d
High
CVE-2021-26952
was published
for
ms3d
(Rust)
Aug 25, 2021
Free of uninitialized memory in adtensor
Critical
CVE-2021-29936
was published
for
adtensor
(Rust)
Aug 25, 2021
Free of uninitialized memory in telemetry
Critical
CVE-2021-29937
was published
for
telemetry
(Rust)
Aug 25, 2021
Memory corruption in array-tools
Critical
CVE-2020-36452
was published
for
array-tools
(Rust)
Aug 25, 2021
Uninitialized memory use in generator
High
CVE-2019-16144
was published
for
generator
(Rust)
Aug 25, 2021
Use of Uninitialized Resource in libp2p-deflate
Critical
CVE-2020-36443
was published
for
libp2p-deflate
(Rust)
Aug 25, 2021
Use of Uninitialized Resource in alg_ds
Critical
CVE-2020-36432
was published
for
alg_ds
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API