Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,543 advisories

Loading
Division by 0 in `Conv2D` Low
CVE-2021-29526 was published for tensorflow (pip) May 21, 2021
Division by 0 in `Conv2DBackpropInput` Low
CVE-2021-29525 was published for tensorflow (pip) May 21, 2021
Division by 0 in `Conv2DBackpropFilter` Low
CVE-2021-29524 was published for tensorflow (pip) May 21, 2021
CHECK-fail in AddManySparseToTensorsMap Low
CVE-2021-29523 was published for tensorflow (pip) May 21, 2021
Division by 0 in `Conv3DBackprop*` Low
CVE-2021-29522 was published for tensorflow (pip) May 21, 2021
Segfault in SparseCountSparseOutput Low
CVE-2021-29521 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `Conv3DBackprop*` Low
CVE-2021-29520 was published for tensorflow (pip) May 21, 2021
CHECK-fail in SparseCross due to type confusion Low
CVE-2021-29519 was published for tensorflow (pip) May 21, 2021
Session operations in eager mode lead to null pointer dereferences Low
CVE-2021-29518 was published for tensorflow (pip) May 21, 2021
Division by zero in `Conv3D` Low
CVE-2021-29517 was published for tensorflow (pip) May 21, 2021
Null pointer dereference via invalid Ragged Tensors Low
CVE-2021-29516 was published for tensorflow (pip) May 21, 2021
Reference binding to null pointer in `MatrixDiag*` ops Low
CVE-2021-29515 was published for tensorflow (pip) May 21, 2021
Heap out of bounds write in `RaggedBinCount` Low
CVE-2021-29514 was published for tensorflow (pip) May 21, 2021
Type confusion during tensor casts lead to dereferencing null pointers Low
CVE-2021-29513 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `RaggedBinCount` Low
CVE-2021-29512 was published for tensorflow (pip) May 21, 2021
Local directory executable lookup in sops (Windows-only) Low
GHSA-x5c7-x7m2-rhmf was published for go.mozilla.org/sops/v3 (Go) May 20, 2021
Ry0taK
Information Disclosure in go.elastic.co/apm Low
CVE-2021-22133 was published for go.elastic.co/apm (Go) May 18, 2021
User enumeration in authentication mechanisms Low
GHSA-g2qj-pmxm-9f8f was published for symfony/security-http (Composer) May 17, 2021
User enumeration in authentication mechanisms Low
GHSA-2frx-j9hj-6c65 was published for lexik/jwt-authentication-bundle (Composer) May 17, 2021
mbrodala chalasr
Open Redirect in Flask-Security-Too Low
CVE-2021-32618 was published for Flask-Security-Too (pip) May 17, 2021
tdunlap607
Ansible vulnerable to Exposure of Resource to Wrong Sphere and Insecure Temporary File Low
CVE-2020-1733 was published for ansible (pip) Apr 20, 2021
VVE-2021-0002: Incorrect `returndatasize` when using simple forwarder proxies deployed prior to EIP-1167 adoption Low
GHSA-375m-5fvv-xq23 was published for vyper (pip) Apr 19, 2021
Unauthorized client-side property update in UIDL request handler in Vaadin 10 and 11 Low
CVE-2018-25007 was published for com.vaadin:flow-server (Maven) Apr 19, 2021
Potential sensitive data exposure in applications using Vaadin 15 Low
CVE-2020-36319 was published for com.vaadin:flow-server (Maven) Apr 19, 2021
knoobie
Unauthorized client-side property update in UIDL request handler in Vaadin 10 and 11 Low
GHSA-3h5r-928v-mxhh was published for com.vaadin:vaadin-bom (Maven) Apr 19, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database