Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

13 advisories

Loading
Heap OOB read in TFLite's implementation of `Minimum` or `Maximum` Low
CVE-2021-29590 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow and undefined behavior in `FusedBatchNorm` Low
CVE-2021-29583 was published for tensorflow (pip) May 21, 2021
Heap OOB read in `tf.raw_ops.Dequantize` Low
CVE-2021-29582 was published for tensorflow (pip) May 21, 2021
Heap out of bounds read in `MaxPoolGradWithArgmax` Low
CVE-2021-29570 was published for tensorflow (pip) May 21, 2021
Heap out of bounds read in `RequantizationRange` Low
CVE-2021-29569 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `RaggedTensorToTensor` Low
CVE-2021-29560 was published for tensorflow (pip) May 21, 2021
Heap OOB access in unicode ops Low
CVE-2021-29559 was published for tensorflow (pip) May 21, 2021
Heap OOB in `QuantizeAndDequantizeV3` Low
CVE-2021-29553 was published for tensorflow (pip) May 21, 2021
OOB read in `MatrixTriangularSolve` Low
CVE-2021-29551 was published for tensorflow (pip) May 21, 2021
Heap out of bounds in `QuantizedBatchNormWithGlobalNormalization` Low
CVE-2021-29547 was published for tensorflow (pip) May 21, 2021
Heap out of bounds read in `RaggedCross` Low
CVE-2021-29532 was published for tensorflow (pip) May 21, 2021
Lack of validation in data format attributes in TensorFlow Low
CVE-2020-26267 was published for tensorflow (pip) Dec 10, 2020
Vyper's `extract32` can ready dirty memory Low
CVE-2024-24564 was published for vyper (pip) Feb 26, 2024
trocher
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database