Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,810
Erlang
36
GitHub Actions
31
Go
2,395
Maven
5,000+
npm
4,030
NuGet
721
pip
3,820
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+

23,252 advisories

Loading
TensorFlow vulnerable to `CHECK` fail in `EmptyTensorList` Moderate
CVE-2022-35998 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to null dereference on MLIR on empty function attributes Moderate
CVE-2022-36000 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `DrawBoundingBoxes` Moderate
CVE-2022-36001 was published for tensorflow (pip) Sep 16, 2022
ghas-to-csv vulnerable to Improper Neutralization of Formula Elements in a CSV File Moderate
CVE-2022-39217 was published for some-natalie/ghas-to-csv (GitHub Actions) Sep 16, 2022
aegilops some-natalie
TensorFlow vulnerable to `CHECK` fail in `Unbatch` Moderate
CVE-2022-36002 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to null-dereference in `mlir::tfg::GraphDefImporter::ConvertNodeDef` Moderate
CVE-2022-36013 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to null dereference on MLIR on empty function attributes Moderate
CVE-2022-36011 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to segfault in `Requantize` Moderate
CVE-2022-36017 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `RandomPoissonV2` Moderate
CVE-2022-36003 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `FakeQuantWithMinMaxVarsGradient` Moderate
CVE-2022-36005 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `AudioSummaryV2` Moderate
CVE-2022-35995 was published for tensorflow (pip) Sep 16, 2022
Binary vulnerable to Slice Memory Allocation with Excessive Size Value High
CVE-2022-36078 was published for github.com/gagliardetto/binary (Go) Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `tf.random.gamma` Moderate
CVE-2022-36004 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to `CHECK`-fail in `tensorflow::full_type::SubstituteFromAttrs` Low
CVE-2022-36016 was published for tensorflow (pip) Sep 16, 2022
Elrond-go has improper initialization Critical
CVE-2022-36061 was published for github.com/ElrondNetwork/elrond-go (Go) Sep 16, 2022
TensorFlow vulnerable to null-dereference in `mlir::tfg::TFOp::nameAttr` Moderate
CVE-2022-36014 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to integer overflow in math ops Low
CVE-2022-36015 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to assertion fail on MLIR empty edge names Moderate
CVE-2022-36012 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `DenseBincount` Moderate
CVE-2022-35987 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to `CHECK` failure in `AvgPoolOp` Moderate
CVE-2022-35941 was published for tensorflow (pip) Sep 16, 2022
Parse Server vulnerable to brute force guessing of user sensitive data via search patterns High
CVE-2022-36079 was published for parse-server (npm) Sep 16, 2022
s00py
TensorFlow vulnerable to `CHECK` fail in `QuantizeAndDequantizeV3` Moderate
CVE-2022-36026 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `RaggedTensorToVariant` Moderate
CVE-2022-36018 was published for tensorflow (pip) Sep 16, 2022
TensorFlow vulnerable to `CHECK` fail in `FakeQuantWithMinMaxVarsPerChannel` Moderate
CVE-2022-36019 was published for tensorflow (pip) Sep 16, 2022
`cell-project` used incorrect variance when projecting through `&Cell<T>` Moderate
GHSA-p75v-367r-2v23 was published for cell-project (Rust) Sep 16, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database