Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

113 advisories

Loading
Vyper's external calls can overflow return data to return input buffer Low
CVE-2024-24560 was published for vyper (pip) Feb 2, 2024
zobront
Heap buffer overflow in `MaxPoolGrad` Low
CVE-2021-29579 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `FractionalAvgPoolGrad` Low
CVE-2021-29578 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `AvgPool3DGrad` Low
CVE-2021-29577 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `MaxPool3DGradGrad` Low
CVE-2021-29576 was published for tensorflow (pip) May 21, 2021
Overflow/denial of service in `tf.raw_ops.ReverseSequence` Low
CVE-2021-29575 was published for tensorflow (pip) May 21, 2021
A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an authenticated attacker... Low Unreviewed
CVE-2023-0969 was published Jun 21, 2023
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory... Low Unreviewed
CVE-2024-42425 was published Sep 10, 2024
Improper buffer restrictions in Intel(R) Media SDK software all versions may allow an... Low Unreviewed
CVE-2023-47169 was published May 16, 2024
Vyper's `_abi_decode` vulnerable to Memory Overflow Low
CVE-2024-26149 was published for vyper (pip) Feb 26, 2024
minaminao-osec
Duplicate Advisory: Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459 Low
GHSA-r3w4-36x6-7r99 was published for nokogiri (RubyGems) May 14, 2024 withdrawn
An issue was discovered in the Arm Mali Kernel Driver. A non-privileged user can make improper... Low Unreviewed
CVE-2022-46396 was published Apr 11, 2023
IDRIX, Truecrypt Veracrypt, Truecrypt Prior to 1.23-Hotfix-1 (Veracrypt), all versions (Truecrypt... Low Unreviewed
CVE-2019-1010208 was published May 24, 2022
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for... Low Unreviewed
CVE-2023-46837 was published Jan 5, 2024
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for... Low Unreviewed
CVE-2023-34321 was published Jan 5, 2024
Improper buffer restrictions in some Intel(R) QAT Library software before version 22.07.1 may... Low Unreviewed
CVE-2023-22313 was published Nov 14, 2023
Buffer overflow in the util_path_encode function in udev/lib/libudev-util.c in udev before 1.4.1... Low Unreviewed
CVE-2009-1186 was published May 2, 2022
The (1) key_notify_sa_flush and (2) key_notify_policy_flush functions in net/key/af_key.c in the... Low Unreviewed
CVE-2013-2234 was published May 17, 2022
The key_notify_policy_flush function in net/key/af_key.c in the Linux kernel before 3.9 does not... Low Unreviewed
CVE-2013-2237 was published May 17, 2022
ulp/sdp/sdp_proc.c in the ib_sdp module (aka ib_sdp.ko) in the ofa_kernel package in the... Low Unreviewed
CVE-2011-3345 was published May 17, 2022
The push_ascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x... Low Unreviewed
CVE-2014-3493 was published May 14, 2022
The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a... Low Unreviewed
CVE-2013-0222 was published May 5, 2022
The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a... Low Unreviewed
CVE-2013-0223 was published May 5, 2022
Dell Alienware m17 R5 BIOS version prior to 1.2.2 contain a buffer access vulnerability. A... Low Unreviewed
CVE-2022-34399 was published Jan 18, 2023
The rfbSendFramebufferUpdate function in server/libvncserver/rfbserver.c in vino-server in Vino 2... Low Unreviewed
CVE-2011-0905 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database