GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
53 advisories
Filter by severity
cairo is vulnerable to denial of service due to a null pointer dereference
Moderate
CVE-2017-7475
was published
for
cairo
(RubyGems)
Nov 15, 2017
Null pointer dereference in TensorFlow leads to exploitation
Moderate
CVE-2018-7576
was published
for
tensorflow
(pip)
Apr 24, 2019
NULL Pointer Dereference in Google TensorFlow
Moderate
CVE-2019-9635
was published
for
tensorflow
(pip)
Apr 30, 2019
Undefined behavior in Tensorflow
Moderate
CVE-2020-15191
was published
for
tensorflow
(pip)
Sep 25, 2020
Null pointer dereference in tensorflow-lite
Moderate
CVE-2020-15209
was published
for
tensorflow
(pip)
Sep 25, 2020
Null pointer dereference in TFLite's `Reshape` operator
Moderate
CVE-2021-29592
was published
for
tensorflow
(pip)
May 21, 2021
Denial-of-Service within Docker container
Moderate
CVE-2020-26213
was published
for
ktbs.dev/teler
(Go)
May 24, 2021
Integer Overflow in openssl-src
Moderate
CVE-2021-23841
was published
for
openssl-src
(Rust)
Aug 25, 2021
openssl-src NULL pointer Dereference in signature_algorithms processing
Moderate
CVE-2021-3449
was published
for
openssl-src
(Rust)
Aug 25, 2021
Null pointer exception when `Exit` node is not preceded by `Enter` op
Moderate
CVE-2021-41217
was published
for
tensorflow
(pip)
Nov 10, 2021
Null pointer exception in `DeserializeSparse`
Moderate
CVE-2021-41215
was published
for
tensorflow
(pip)
Nov 10, 2021
Denial of Service in Go-Ethereum
Moderate
CVE-2021-43668
was published
for
github.com/ethereum/go-ethereum
(Go)
Nov 23, 2021
Null pointer dereference in Grappler's `IsConstant`
Moderate
CVE-2022-23589
was published
for
tensorflow
(pip)
Feb 9, 2022
Null pointer dereference in TensorFlow
Moderate
CVE-2022-23595
was published
for
tensorflow
(pip)
Feb 9, 2022
Null-dereference in Tensorflow
Moderate
CVE-2022-23570
was published
for
tensorflow
(pip)
Feb 9, 2022
Null pointer dereference in TensorFlow
Moderate
CVE-2022-21739
was published
for
tensorflow
(pip)
Feb 9, 2022
Null-dereference in Tensorflow
Moderate
CVE-2022-23577
was published
for
tensorflow
(pip)
Feb 10, 2022
NULL Pointer Dereference in Kubernetes CSI snapshot-controller
Moderate
CVE-2020-8569
was published
for
github.com/kubernetes-csi/external-snapshotter/v2
(Go)
Feb 15, 2022
OpenDaylight NULL Pointer Dereference
Moderate
CVE-2017-1000360
was published
for
org.opendaylight.controller:releasepom
(Maven)
May 13, 2022
Aubio is vulnerable to a NULL pointer dereference
Moderate
CVE-2017-17554
was published
for
aubio
(pip)
May 14, 2022
futures_task::noop_waker_ref can segfault due to dereferencing a NULL pointer
Moderate
CVE-2020-35907
was published
for
futures-task
(Rust)
May 24, 2022
Nokogiri Implements libxml2 version vulnerable to null pointer dereferencing
Moderate
CVE-2021-3537
was published
for
nokogiri
(RubyGems)
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API