Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

224 advisories

Loading
Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an... Moderate Unreviewed
CVE-2020-8617 was published May 24, 2022
TensorFlow vulnerable to assertion fail on MLIR empty edge names Moderate
CVE-2022-36012 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to `CHECK` failure in tf.reshape via overflows Moderate
CVE-2022-35934 was published for tensorflow (pip) Sep 16, 2022
libjxl 0.6.1 has an assertion failure in LowMemoryRenderPipeline::Init() in render_pipeline... Moderate Unreviewed
CVE-2022-34000 was published Jun 20, 2022
JasPer 3.0.6 allows denial of service via a reachable assertion in the function inttobits in... Moderate Unreviewed
CVE-2022-40755 was published Sep 17, 2022
TensorFlow vulnerable to `CHECK` fail in `RaggedTensorToVariant` Moderate
CVE-2022-36018 was published for tensorflow (pip) Sep 16, 2022
An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow... Moderate Unreviewed
CVE-2021-30501 was published May 24, 2022
tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv6() at tree.c Moderate Unreviewed
CVE-2021-45386 was published Feb 12, 2022
tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv4() at tree.c. Moderate Unreviewed
CVE-2021-45387 was published Feb 12, 2022
tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c. Moderate Unreviewed
CVE-2022-27939 was published Mar 27, 2022
Mikrotik RouterOs through stable v6.48.3 was discovered to contain an assertion failure in the... Moderate Unreviewed
CVE-2022-36522 was published Aug 27, 2022
liveMedia/FramedSource.cpp in Live555 through 1.08 allows an assertion failure and application... Moderate Unreviewed
CVE-2021-39283 was published May 24, 2022
An issue was discovered in PJSIP in Asterisk before 16.19.1 and before 18.5.1. To exploit, a re... Moderate Unreviewed
CVE-2021-31878 was published May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from an assertion failure vulnerability in... Moderate Unreviewed
CVE-2020-20262 was published May 24, 2022
Mikrotik RouterOs 6.44.5 (long-term tree) suffers from an assertion failure vulnerability in the ... Moderate Unreviewed
CVE-2020-20211 was published May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from an assertion failure vulnerability in... Moderate Unreviewed
CVE-2020-20225 was published May 24, 2022
In BIND 9.8.5 -> 9.8.8, 9.9.3 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11... Moderate Unreviewed
CVE-2021-25214 was published May 24, 2022
Mikrotik RouterOs 6.44.6 (long-term tree) suffers from an assertion failure vulnerability in the... Moderate Unreviewed
CVE-2020-20214 was published May 24, 2022
A denial of service vulnerability was discovered in nbdkit. A client issuing a certain sequence... Moderate Unreviewed
CVE-2019-14851 was published May 24, 2022
A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may... Moderate Unreviewed
CVE-2021-20286 was published May 24, 2022
Context-specific code was included in a shared jump table; resulting in assertions being... Moderate Unreviewed
CVE-2021-23970 was published May 24, 2022
In BIND 9.10.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.10.5-S1 -> 9.11.21... Moderate Unreviewed
CVE-2020-8623 was published May 24, 2022
In BIND 9.14.0 -> 9.16.5, 9.17.0 -> 9.17.3, If a server is configured with both QNAME... Moderate Unreviewed
CVE-2020-8621 was published May 24, 2022
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp... Moderate Unreviewed
CVE-2020-6097 was published May 24, 2022
In BIND 9.15.6 -> 9.16.5, 9.17.0 -> 9.17.3, An attacker who can establish a TCP connection with... Moderate Unreviewed
CVE-2020-8620 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database