Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

57 advisories

Loading
Heap OOB in nested `tf.map_fn` with `RaggedTensor`s High
CVE-2021-37679 was published for tensorflow (pip) Aug 25, 2021
Crash in NMS ops caused by integer conversion to unsigned Moderate
CVE-2021-37669 was published for tensorflow (pip) Aug 25, 2021
Crash caused by integer conversion to unsigned Moderate
CVE-2021-37661 was published for tensorflow (pip) Aug 25, 2021
Overflow/crash in `tf.range` Moderate
CVE-2021-41202 was published for tensorflow (pip) Nov 10, 2021
An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If... High Unreviewed
CVE-2021-27218 was published May 24, 2022
An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function... High Unreviewed
CVE-2021-27219 was published May 24, 2022
The Mem_File_Reader::read_avail function in Data_Reader.cpp in the Game_Music_Emu library (aka... Moderate Unreviewed
CVE-2017-17446 was published May 13, 2022
gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.33, 7.0.x before 7... Moderate Unreviewed
CVE-2018-5711 was published May 13, 2022
In libming 0.4.8, there is an integer signedness error vulnerability (left shift of a negative... Moderate Unreviewed
CVE-2018-5251 was published May 13, 2022
PowerDNS Authoritative daemon , all versions pdns 4.1.x before pdns 4.1.10, exiting when... Moderate Unreviewed
CVE-2019-10203 was published May 24, 2022
Structured reply is a feature of the newstyle NBD protocol allowing the server to send a reply in... Critical Unreviewed
CVE-2019-14842 was published May 24, 2022
An integer conversion error in Hermes bytecode generation, prior to commit... Critical Unreviewed
CVE-2022-40138 was published Oct 11, 2022
The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which... High Unreviewed
CVE-2021-32996 was published Jan 11, 2022
An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large... High Unreviewed
CVE-2022-2639 was published Sep 2, 2022
An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of... Critical Unreviewed
CVE-2022-43663 was published Mar 20, 2023
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign... High Unreviewed
CVE-2023-0185 was published Apr 1, 2023
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive... High Unreviewed
CVE-2023-20006 was published Jun 28, 2023
Okio Signed to Unsigned Conversion Error vulnerability Moderate
CVE-2023-3635 was published for com.squareup.okio:okio (Maven) Jul 12, 2023
trettstadtnlb adrienpessu
Windows MSHTML Platform Remote Code Execution Vulnerability High Unreviewed
CVE-2021-33742 was published May 24, 2022
Integer signedness error in the Networking component in Apple Mac OS X 10.4 through 10.4.10... High Unreviewed
CVE-2007-4268 was published May 1, 2022
Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the... High Unreviewed
CVE-2008-3282 was published May 1, 2022
The Embedded OpenType (EOT) Font Engine (T2EMBED.DLL) in Microsoft Windows 2000 SP4, XP SP2 and... High Unreviewed
CVE-2009-0231 was published May 2, 2022
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context... Moderate Unreviewed
CVE-2007-4988 was published May 1, 2022
Oxenstored 32->31 bit integer truncation issues Integers in Ocaml are 63 or 31 bits of signed... Moderate Unreviewed
CVE-2022-42324 was published Nov 1, 2022
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated... Moderate Unreviewed
CVE-2023-28063 was published Feb 6, 2024
ProTip! Advisories are also available from the GraphQL API