GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
30 advisories
Filter by severity
LibOSDP vulnerable to a null pointer deref in osdp_reply_name
Moderate
CVE-2024-52296
was published
for
libosdp
(pip)
Mar 8, 2024
Null pointer dereference in PKCS12 parsing
Moderate
CVE-2024-0727
was published
for
cryptography
(pip)
Jan 26, 2024
PaddlePaddle nullptr dereference in paddle.crop
Moderate
CVE-2023-52312
was published
for
PaddlePaddle
(pip)
Jan 3, 2024
PaddlePaddle segfault in paddle.dot
Moderate
CVE-2023-38676
was published
for
PaddlePaddle
(pip)
Jan 3, 2024
PaddlePaddle null pointer dereference in paddle.nextafter
Moderate
CVE-2023-52302
was published
for
PaddlePaddle
(pip)
Jan 3, 2024
PaddlePaddle segfault in paddle.put_along_axis
Moderate
CVE-2023-52303
was published
for
paddlepaddle
(pip)
Jan 3, 2024
cryptography vulnerable to NULL-dereference when loading PKCS7 certificates
Moderate
CVE-2023-49083
was published
for
cryptography
(pip)
Nov 28, 2023
Null pointer dereference in PaddlePaddle
Moderate
CVE-2023-38670
was published
for
paddlepaddle
(pip)
Jul 26, 2023
Segfault in `CompositeTensorVariantToComponents`
Moderate
CVE-2022-41909
was published
for
tensorflow
(pip)
Nov 21, 2022
Segfault via invalid attributes in `pywrap_tfe_src.cc`
Moderate
CVE-2022-41889
was published
for
tensorflow
(pip)
Nov 21, 2022
TensorFlow vulnerable to segfault in `LowerBound` and `UpperBound`
Moderate
CVE-2022-35965
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to null dereference on MLIR on empty function attributes
Moderate
CVE-2022-36000
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to null-dereference in `mlir::tfg::GraphDefImporter::ConvertNodeDef`
Moderate
CVE-2022-36013
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to null dereference on MLIR on empty function attributes
Moderate
CVE-2022-36011
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to null-dereference in `mlir::tfg::TFOp::nameAttr`
Moderate
CVE-2022-36014
was published
for
tensorflow
(pip)
Sep 16, 2022
LIEF contains a segmentation violation
Moderate
CVE-2022-38497
was published
for
lief
(pip)
Sep 14, 2022
LIEF contains segmentation violation
Moderate
CVE-2022-38307
was published
for
lief
(pip)
Sep 14, 2022
lxml NULL Pointer Dereference allows attackers to cause a denial of service
Moderate
CVE-2022-2309
was published
for
lxml
(pip)
Jul 6, 2022
Missing validation results in undefined behavior in `SparseTensorDenseAdd
Moderate
CVE-2022-29206
was published
for
tensorflow
(pip)
May 24, 2022
Segfault due to missing support for quantized types
Moderate
CVE-2022-29205
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation results in undefined behavior in `QuantizedConv2D`
Moderate
CVE-2022-29201
was published
for
tensorflow
(pip)
May 24, 2022
Aubio is vulnerable to a NULL pointer dereference
Moderate
CVE-2017-17554
was published
for
aubio
(pip)
May 14, 2022
Null pointer dereference in TensorFlow
Moderate
CVE-2022-23595
was published
for
tensorflow
(pip)
Feb 9, 2022
Null pointer dereference in Grappler's `IsConstant`
Moderate
CVE-2022-23589
was published
for
tensorflow
(pip)
Feb 9, 2022
Null pointer exception in `DeserializeSparse`
Moderate
CVE-2021-41215
was published
for
tensorflow
(pip)
Nov 10, 2021
ProTip!
Advisories are also available from the
GraphQL API