Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

219 advisories

Loading
An issue was discovered in ImageMagick 7.0.7. The MogrifyImageList function in MagickWand/mogrify... Moderate Unreviewed
CVE-2017-18252 was published May 13, 2022
A reachable assertion vulnerability in Trend Micro Apex One could allow an attacker to crash the... Moderate Unreviewed
CVE-2021-44022 was published Dec 4, 2021
Incomplete validation in `tf.summary.create_file_writer` Moderate
CVE-2021-41200 was published for tensorflow (pip) Nov 10, 2021
Reachable Assertion in OpenCV. Moderate
CVE-2018-5269 was published for opencv-contrib-python (pip) Oct 12, 2021
`std::abort` raised from `TensorListReserve` Moderate
CVE-2021-37644 was published for tensorflow (pip) Aug 25, 2021
An issue was discovered in JasPer 2.0.14. There is an access violation in the function... Moderate Unreviewed
CVE-2018-19539 was published May 13, 2022
In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the... Moderate Unreviewed
CVE-2017-13658 was published May 13, 2022
Denial of Service in Tensorflow Moderate
CVE-2020-15197 was published for tensorflow (pip) Sep 25, 2020
Denial of Service in Tensorflow Moderate
CVE-2020-15194 was published for tensorflow (pip) Sep 25, 2020
JasPer 2.0.14 allows denial of service via a reachable assertion in the function... Moderate Unreviewed
CVE-2018-9252 was published May 13, 2022
When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP... Moderate Unreviewed
CVE-2019-0003 was published May 13, 2022
A query with a specific set of characteristics could cause a server using DNS64 to encounter an... Moderate Unreviewed
CVE-2017-3136 was published May 13, 2022
`CHECK_EQ` fail in `tf.raw_ops.TensorListResize` Moderate
CVE-2022-41893 was published for tensorflow (pip) Nov 21, 2022
An issue was discovered in cairo 1.16.0. There is an assertion problem in the function... Moderate Unreviewed
CVE-2019-6461 was published May 13, 2022
There is a reachable assertion abort in the function sox_append_comment() in formats.c in Sound... Moderate Unreviewed
CVE-2017-15371 was published May 13, 2022
An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting... Moderate Unreviewed
CVE-2018-17204 was published May 13, 2022
A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17.... Moderate Unreviewed
CVE-2018-20217 was published May 13, 2022
There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel... Moderate Unreviewed
CVE-2022-29977 was published May 12, 2022
Denial of service due to reachable assertion in modem while processing filter rule from... Moderate Unreviewed
CVE-2022-25675 was published Dec 13, 2022
An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3... Moderate Unreviewed
CVE-2020-11653 was published May 24, 2022
Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an... Moderate Unreviewed
CVE-2020-8617 was published May 24, 2022
TensorFlow vulnerable to assertion fail on MLIR empty edge names Moderate
CVE-2022-36012 was published for tensorflow (pip) Sep 16, 2022
libjxl 0.6.1 has an assertion failure in LowMemoryRenderPipeline::Init() in render_pipeline... Moderate Unreviewed
CVE-2022-34000 was published Jun 20, 2022
TensorFlow vulnerable to `CHECK` failure in tf.reshape via overflows Moderate
CVE-2022-35934 was published for tensorflow (pip) Sep 16, 2022
JasPer 3.0.6 allows denial of service via a reachable assertion in the function inttobits in... Moderate Unreviewed
CVE-2022-40755 was published Sep 17, 2022
ProTip! Advisories are also available from the GraphQL API