Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

82 advisories

Loading
Out-of-bounds read in nokogiri High
CVE-2017-9050 was published for nokogiri (RubyGems) Dec 13, 2017
Denial of service or RCE from libxml2 and libxslt High
CVE-2015-8806 was published for nokogiri (RubyGems) Sep 17, 2018
Improper Input Validation and Buffer Over-read in mqtt-packet High
CVE-2019-5432 was published for mqtt-packet (npm) May 14, 2019
Out-of-bounds Read in base64-url High
GHSA-j4mr-9xw3-c9jx was published for base64-url (npm) May 31, 2019
typed-ast Out-of-bounds Read High
CVE-2019-19274 was published for typed-ast (pip) Dec 2, 2019
fritzdal
typed-ast Out-of-bounds Read High
CVE-2019-19275 was published for typed-ast (pip) Dec 2, 2019
Out-of-bounds Read in Pillow High
CVE-2020-5313 was published for Pillow (pip) Apr 1, 2020
Out-of-bounds read in TensorFlow possibly causing disclosure of the contents of process memory. High
CVE-2018-21233 was published for tensorflow (pip) May 13, 2020
Out-of-bounds reads in Pillow High
CVE-2020-10994 was published for Pillow (pip) Jul 27, 2020
Out-of-bounds reads in Pillow High
CVE-2020-10177 was published for Pillow (pip) Jul 27, 2020
sunSUNQ
Data corruption in tensorflow-lite High
CVE-2020-15208 was published for tensorflow (pip) Sep 25, 2020
Segfault in `tf.quantization.quantize_and_dequantize` High
CVE-2020-15265 was published for tensorflow (pip) Nov 13, 2020
Pillow Out-of-bounds Read High
CVE-2020-35653 was published for pillow (pip) Mar 18, 2021
Out of bounds read in Pillow High
CVE-2021-25293 was published for Pillow (pip) Mar 29, 2021
sunSUNQ
Out of bounds read in Pillow High
CVE-2021-25291 was published for Pillow (pip) Mar 29, 2021
tdunlap607 sunSUNQ
Out-of-bounds read in Apache Thrift High
CVE-2019-0210 was published for github.com/apache/thrift (Go) May 18, 2021
Heap OOB read in TFLite High
CVE-2021-29606 was published for tensorflow (pip) May 21, 2021
Out-of-bounds Read in Pillow High
CVE-2021-25287 was published for Pillow (pip) Jun 8, 2021
Pillow Out-of-bounds Read vulnerability High
CVE-2021-25288 was published for Pillow (pip) Jun 8, 2021
Heap OOB in nested `tf.map_fn` with `RaggedTensor`s High
CVE-2021-37679 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in boosted trees High
CVE-2021-37664 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr and heap OOB in binary cwise ops High
CVE-2021-37659 was published for tensorflow (pip) Aug 25, 2021
Heap OOB in `ResourceScatterUpdate` High
CVE-2021-37655 was published for tensorflow (pip) Aug 25, 2021
Heap OOB and CHECK fail in `ResourceGather` High
CVE-2021-37654 was published for tensorflow (pip) Aug 25, 2021
Heap buffer overflow in `FractionalAvgPoolGrad` High
CVE-2021-37651 was published for tensorflow (pip) Aug 25, 2021
ProTip! Advisories are also available from the GraphQL API