Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

2,401 advisories

Loading
Null pointer dereference and heap OOB read in operations restoring tensors High
CVE-2021-37639 was published for tensorflow (pip) Aug 25, 2021
Heap buffer overflow in `FractionalAvgPoolGrad` High
CVE-2021-37651 was published for tensorflow (pip) Aug 25, 2021
Heap OOB and CHECK fail in `ResourceGather` High
CVE-2021-37654 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in `ResourceScatterUpdate` High
CVE-2021-37655 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr and heap OOB in binary cwise ops High
CVE-2021-37659 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in boosted trees High
CVE-2021-37664 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in nested `tf.map_fn` with `RaggedTensor`s High
CVE-2021-37679 was published for tensorflow (pip) Aug 25, 2021
Out-of-Bounds Read in Node.js High Unreviewed
CVE-2021-22918 was published Jul 13, 2021
Pillow Out-of-bounds Read vulnerability High
CVE-2021-25288 was published for Pillow (pip) Jun 8, 2021
Out-of-bounds Read in Pillow High
CVE-2021-25287 was published for Pillow (pip) Jun 8, 2021
Out-of-bounds read in Apache Thrift High
CVE-2019-0210 was published for github.com/apache/thrift (Go) May 18, 2021
Out of bounds read in Pillow High
CVE-2021-25291 was published for Pillow (pip) Mar 29, 2021
tdunlap607 sunSUNQ
Out of bounds read in Pillow High
CVE-2021-25293 was published for Pillow (pip) Mar 29, 2021
sunSUNQ
Pillow Out-of-bounds Read High
CVE-2020-35653 was published for pillow (pip) Mar 18, 2021
Segfault in `tf.quantization.quantize_and_dequantize` High
CVE-2020-15265 was published for tensorflow (pip) Nov 13, 2020
Data corruption in tensorflow-lite High
CVE-2020-15208 was published for tensorflow (pip) Sep 25, 2020
Out-of-bounds reads in Pillow High
CVE-2020-10177 was published for Pillow (pip) Jul 27, 2020
sunSUNQ
Out-of-bounds reads in Pillow High
CVE-2020-10994 was published for Pillow (pip) Jul 27, 2020
Out-of-bounds read in TensorFlow possibly causing disclosure of the contents of process memory. High
CVE-2018-21233 was published for tensorflow (pip) May 13, 2020
Out-of-bounds Read in Pillow High
CVE-2020-5313 was published for Pillow (pip) Apr 1, 2020
typed-ast Out-of-bounds Read High
CVE-2019-19275 was published for typed-ast (pip) Dec 2, 2019
typed-ast Out-of-bounds Read High
CVE-2019-19274 was published for typed-ast (pip) Dec 2, 2019
fritzdal
Out-of-bounds Read in base64-url High
GHSA-j4mr-9xw3-c9jx was published for base64-url (npm) May 31, 2019
Improper Input Validation and Buffer Over-read in mqtt-packet High
CVE-2019-5432 was published for mqtt-packet (npm) May 14, 2019
Denial of service or RCE from libxml2 and libxslt High
CVE-2015-8806 was published for nokogiri (RubyGems) Sep 17, 2018
ProTip! Advisories are also available from the GraphQL API