Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

7 advisories

Loading
Assumed memory layout of std::net::SocketAddr Moderate
GHSA-p5w9-856p-8q4g was published for socket2 (Rust) Aug 25, 2021 withdrawn
Invalid drop of partially-initialized instances in the pooling instance allocator for modules with defined `externref` globals Moderate
CVE-2022-23636 was published for wasmtime (Rust) Feb 16, 2022
peterhuene
Reference binding to nullptr in `RaggedTensorToSparse` Moderate
CVE-2021-37656 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr in `MatrixDiagV*` ops Moderate
CVE-2021-37657 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr in `MatrixSetDiagV*` ops Moderate
CVE-2021-37658 was published for tensorflow (pip) Aug 25, 2021
Reference binding to nullptr in boosted trees Moderate
CVE-2021-37662 was published for tensorflow (pip) Aug 25, 2021
Segfault while copying constant resource tensor Moderate
CVE-2021-41204 was published for tensorflow (pip) Nov 10, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database