GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
77 advisories
Filter by severity
NULL Pointer Dereference and Access of Uninitialized Pointer in TensorFlow
Critical
GHSA-h6gw-r52c-724r
was published
for
tensorflow
(pip)
Feb 9, 2022
Missing validation results in undefined behavior in `SparseTensorDenseAdd
Moderate
CVE-2022-29206
was published
for
tensorflow
(pip)
May 24, 2022
Segfault due to missing support for quantized types
Moderate
CVE-2022-29205
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation results in undefined behavior in `QuantizedConv2D`
Moderate
CVE-2022-29201
was published
for
tensorflow
(pip)
May 24, 2022
TensorFlow vulnerable to null-dereference in `mlir::tfg::GraphDefImporter::ConvertNodeDef`
Moderate
CVE-2022-36013
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to null dereference on MLIR on empty function attributes
Moderate
CVE-2022-36011
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to null-dereference in `mlir::tfg::TFOp::nameAttr`
Moderate
CVE-2022-36014
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to segfault in `LowerBound` and `UpperBound`
Moderate
CVE-2022-35965
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to null dereference on MLIR on empty function attributes
Moderate
CVE-2022-36000
was published
for
tensorflow
(pip)
Sep 16, 2022
Segfault via invalid attributes in `pywrap_tfe_src.cc`
Moderate
CVE-2022-41889
was published
for
tensorflow
(pip)
Nov 21, 2022
NULL Pointer Dereference in OpenCV.
High
CVE-2019-14493
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
TensorFlow has null dereference on ParallelConcat with XLA
High
CVE-2023-25676
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow vulnerable to seg fault in `tf.raw_ops.Print`
High
CVE-2023-25660
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow has Null Pointer Error in TensorArrayConcatV2
High
CVE-2023-25663
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow has Null Pointer Error in SparseSparseMaximum
High
CVE-2023-25665
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow has Null Pointer Error in LookupTableImportV2
High
CVE-2023-25672
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow has Null Pointer Error in QuantizedMatMulWithBiasAndDequantize
High
CVE-2023-25670
was published
for
tensorflow
(pip)
Mar 24, 2023
TensorFlow has Null Pointer Error in RandomShuffle with XLA enable
High
CVE-2023-25674
was published
for
tensorflow
(pip)
Mar 24, 2023
Segfault in `CompositeTensorVariantToComponents`
Moderate
CVE-2022-41909
was published
for
tensorflow
(pip)
Nov 21, 2022
LIEF contains segmentation violation
Moderate
CVE-2022-38307
was published
for
lief
(pip)
Sep 14, 2022
LIEF contains a segmentation violation
Moderate
CVE-2022-38497
was published
for
lief
(pip)
Sep 14, 2022
Null pointer dereference in PaddlePaddle
Moderate
CVE-2023-38670
was published
for
paddlepaddle
(pip)
Jul 26, 2023
cryptography vulnerable to NULL-dereference when loading PKCS7 certificates
Moderate
CVE-2023-49083
was published
for
cryptography
(pip)
Nov 28, 2023
cryptography NULL pointer dereference with pkcs12.serialize_key_and_certificates when called with a non-matching certificate and private key and an hmac_hash override
High
CVE-2024-26130
was published
for
cryptography
(pip)
Feb 21, 2024
ProTip!
Advisories are also available from the
GraphQL API