GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,049
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
53 advisories
Filter by severity
Incomplete validation in `tf.summary.create_file_writer`
Moderate
CVE-2021-41200
was published
for
tensorflow
(pip)
Nov 10, 2021
`std::abort` raised from `TensorListReserve`
Moderate
CVE-2021-37644
was published
for
tensorflow
(pip)
Aug 25, 2021
`CHECK`-fails due to attempting to build a reference tensor
Moderate
CVE-2022-23588
was published
for
tensorflow
(pip)
Feb 9, 2022
Multiple `CHECK`-fails in `function.cc` in TensowFlow
Moderate
CVE-2022-23586
was published
for
tensorflow
(pip)
Feb 9, 2022
`CHECK`-failures in binary ops in Tensorflow
Moderate
CVE-2022-23583
was published
for
tensorflow
(pip)
Feb 10, 2022
`CHECK`-failures in `TensorByteSize` in Tensorflow
Moderate
CVE-2022-23582
was published
for
tensorflow
(pip)
Feb 10, 2022
`CHECK`-failures during Grappler's `IsSimplifiableReshape` in Tensorflow
Moderate
CVE-2022-23581
was published
for
tensorflow
(pip)
Feb 7, 2022
`CHECK`-failures during Grappler's `SafeToRemoveIdentity` in Tensorflow
Moderate
CVE-2022-23579
was published
for
tensorflow
(pip)
Feb 10, 2022
Denial of Service in Tensorflow
Moderate
CVE-2020-15197
was published
for
tensorflow
(pip)
Sep 25, 2020
Denial of Service in Tensorflow
Moderate
CVE-2020-15194
was published
for
tensorflow
(pip)
Sep 25, 2020
wasmtime has a runtime crash when combining tail calls with trapping imports
Moderate
CVE-2024-47763
was published
for
wasmtime
(Rust)
Oct 9, 2024
malformed proposed intoto entries can cause a panic
Moderate
CVE-2023-33199
was published
for
github.com/sigstore/rekor
(Go)
May 26, 2023
cordova-plugin-fingerprint-aio DoS vulnerability
Moderate
CVE-2021-43849
was published
for
cordova-plugin-fingerprint-aio
(npm)
Nov 2, 2023
Incomplete validation in signal ops leads to crashes in TensorFlow
Moderate
CVE-2022-29213
was published
for
tensorflow
(pip)
May 24, 2022
`CHECK_EQ` fail via input in `SparseMatrixNNZ`
Moderate
CVE-2022-41901
was published
for
tensorflow
(pip)
Nov 21, 2022
`CHECK` fail via inputs in `SdcaOptimizer`
Moderate
CVE-2022-41899
was published
for
tensorflow
(pip)
Nov 21, 2022
Reachable Assertion in OpenCV.
Moderate
CVE-2018-5269
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
`CHECK_EQ` fail in `tf.raw_ops.TensorListResize`
Moderate
CVE-2022-41893
was published
for
tensorflow
(pip)
Nov 21, 2022
TensorFlow vulnerable to assertion fail on MLIR empty edge names
Moderate
CVE-2022-36012
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` failure in tf.reshape via overflows
Moderate
CVE-2022-35934
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `RaggedTensorToVariant`
Moderate
CVE-2022-36018
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `tf.linalg.matrix_rank`
Moderate
CVE-2022-35988
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `FakeQuantWithMinMaxVarsPerChannelGradient`
Moderate
CVE-2022-35990
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `MaxPool`
Moderate
CVE-2022-35989
was published
for
tensorflow
(pip)
Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `SetSize`
Moderate
CVE-2022-35993
was published
for
tensorflow
(pip)
Sep 16, 2022
ProTip!
Advisories are also available from the
GraphQL API