Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

17 advisories

Loading
Heap OOB read in TFLite's implementation of `Minimum` or `Maximum` Low
CVE-2021-29590 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow and undefined behavior in `FusedBatchNorm` Low
CVE-2021-29583 was published for tensorflow (pip) May 21, 2021
Heap OOB read in `tf.raw_ops.Dequantize` Low
CVE-2021-29582 was published for tensorflow (pip) May 21, 2021
Heap out of bounds read in `MaxPoolGradWithArgmax` Low
CVE-2021-29570 was published for tensorflow (pip) May 21, 2021
Heap out of bounds read in `RequantizationRange` Low
CVE-2021-29569 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `RaggedTensorToTensor` Low
CVE-2021-29560 was published for tensorflow (pip) May 21, 2021
Heap OOB access in unicode ops Low
CVE-2021-29559 was published for tensorflow (pip) May 21, 2021
Heap OOB in `QuantizeAndDequantizeV3` Low
CVE-2021-29553 was published for tensorflow (pip) May 21, 2021
OOB read in `MatrixTriangularSolve` Low
CVE-2021-29551 was published for tensorflow (pip) May 21, 2021
Heap out of bounds in `QuantizedBatchNormWithGlobalNormalization` Low
CVE-2021-29547 was published for tensorflow (pip) May 21, 2021
Heap out of bounds read in `RaggedCross` Low
CVE-2021-29532 was published for tensorflow (pip) May 21, 2021
Lack of validation in data format attributes in TensorFlow Low
CVE-2020-26267 was published for tensorflow (pip) Dec 10, 2020
Vyper's `extract32` can ready dirty memory Low
CVE-2024-24564 was published for vyper (pip) Feb 26, 2024
trocher
OpenZeppelin Contracts base64 encoding may read from potentially dirty memory Low
CVE-2024-27094 was published for @openzeppelin/contracts (npm) Feb 29, 2024
rholterhus
linux-loader reading beyond EOF could lead to infinite loop Low
CVE-2022-23523 was published for linux-loader (Rust) Dec 12, 2022
likebreath
Out-of-bounds Read in njwt Low
GHSA-g3qw-9pgp-xpj4 was published for njwt (npm) Sep 1, 2020
ProTip! Advisories are also available from the GraphQL API