GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
219 advisories
Filter by severity
An issue was discovered in ImageMagick 7.0.7. The MogrifyImageList function in MagickWand/mogrify...
Moderate
Unreviewed
CVE-2017-18252
was published
May 13, 2022
A reachable assertion vulnerability in Trend Micro Apex One could allow an attacker to crash the...
Moderate
Unreviewed
CVE-2021-44022
was published
Dec 4, 2021
Incomplete validation in `tf.summary.create_file_writer`
Moderate
CVE-2021-41200
was published
for
tensorflow
(pip)
Nov 10, 2021
Reachable Assertion in OpenCV.
Moderate
CVE-2018-5269
was published
for
opencv-contrib-python
(pip)
Oct 12, 2021
`std::abort` raised from `TensorListReserve`
Moderate
CVE-2021-37644
was published
for
tensorflow
(pip)
Aug 25, 2021
An issue was discovered in JasPer 2.0.14. There is an access violation in the function...
Moderate
Unreviewed
CVE-2018-19539
was published
May 13, 2022
In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the...
Moderate
Unreviewed
CVE-2017-13658
was published
May 13, 2022
Denial of Service in Tensorflow
Moderate
CVE-2020-15197
was published
for
tensorflow
(pip)
Sep 25, 2020
Denial of Service in Tensorflow
Moderate
CVE-2020-15194
was published
for
tensorflow
(pip)
Sep 25, 2020
JasPer 2.0.14 allows denial of service via a reachable assertion in the function...
Moderate
Unreviewed
CVE-2018-9252
was published
May 13, 2022
When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP...
Moderate
Unreviewed
CVE-2019-0003
was published
May 13, 2022
A query with a specific set of characteristics could cause a server using DNS64 to encounter an...
Moderate
Unreviewed
CVE-2017-3136
was published
May 13, 2022
`CHECK_EQ` fail in `tf.raw_ops.TensorListResize`
Moderate
CVE-2022-41893
was published
for
tensorflow
(pip)
Nov 21, 2022
An issue was discovered in cairo 1.16.0. There is an assertion problem in the function...
Moderate
Unreviewed
CVE-2019-6461
was published
May 13, 2022
There is a reachable assertion abort in the function sox_append_comment() in formats.c in Sound...
Moderate
Unreviewed
CVE-2017-15371
was published
May 13, 2022
An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting...
Moderate
Unreviewed
CVE-2018-17204
was published
May 13, 2022
A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17....
Moderate
Unreviewed
CVE-2018-20217
was published
May 13, 2022
There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel...
Moderate
Unreviewed
CVE-2022-29977
was published
May 12, 2022
Denial of service due to reachable assertion in modem while processing filter rule from...
Moderate
Unreviewed
CVE-2022-25675
was published
Dec 13, 2022
An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3...
Moderate
Unreviewed
CVE-2020-11653
was published
May 24, 2022
Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an...
Moderate
Unreviewed
CVE-2020-8617
was published
May 24, 2022
TensorFlow vulnerable to assertion fail on MLIR empty edge names
Moderate
CVE-2022-36012
was published
for
tensorflow
(pip)
Sep 16, 2022
libjxl 0.6.1 has an assertion failure in LowMemoryRenderPipeline::Init() in render_pipeline...
Moderate
Unreviewed
CVE-2022-34000
was published
Jun 20, 2022
TensorFlow vulnerable to `CHECK` failure in tf.reshape via overflows
Moderate
CVE-2022-35934
was published
for
tensorflow
(pip)
Sep 16, 2022
JasPer 3.0.6 allows denial of service via a reachable assertion in the function inttobits in...
Moderate
Unreviewed
CVE-2022-40755
was published
Sep 17, 2022
ProTip!
Advisories are also available from the
GraphQL API