Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

1,938 advisories

Loading
Overflow in prost-types High
CVE-2021-38192 was published for prost-types (Rust) Aug 25, 2021
tdunlap607
Multiple security issues including data race, buffer overflow, and uninitialized memory drop in arr Critical
CVE-2020-35887 was published for arr (Rust) Aug 25, 2021
Segfault and heap buffer overflow in `{Experimental,}DatasetToTFRecord` High
CVE-2021-37650 was published for tensorflow (pip) Aug 25, 2021
Heap buffer overflow in `BandedTriangularSolve` Low
CVE-2021-29612 was published for tensorflow (pip) May 21, 2021
Overflow/denial of service in `tf.raw_ops.ReverseSequence` Low
CVE-2021-29575 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `Conv2DBackpropFilter` Low
CVE-2021-29540 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `Conv3DBackprop*` Low
CVE-2021-29520 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `RaggedBinCount` Low
CVE-2021-29512 was published for tensorflow (pip) May 21, 2021
Buffer overflow in canvas High
CVE-2020-8215 was published for canvas (npm) May 7, 2021
Arbitrary code execution in clickhouse-driver Critical
CVE-2020-26759 was published for clickhouse-driver (pip) Apr 7, 2021
xzkostyan
Buffer overflow in deprecated USB HALs and stack overflow in USB enumeration Low
GHSA-f366-4rvv-95x2 was published for cryptoauthlib (pip) Oct 2, 2020
Buffer Overflow in node-weakauras-parser Moderate
GHSA-86mr-6m89-vgj3 was published for node-weakauras-parser (npm) Sep 3, 2020
Buffer overflow in Pillow High
CVE-2020-10379 was published for Pillow (pip) Jul 27, 2020
ProTip! Advisories are also available from the GraphQL API