Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

904 advisories

Loading
Undefined behavior in `SparseTensorSliceDataset` High
CVE-2022-21736 was published for tensorflow (pip) Feb 9, 2022
Null-dereference in Tensorflow High
CVE-2022-23570 was published for tensorflow (pip) Feb 9, 2022
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat High
CVE-2020-13934 was published for org.apache.tomcat:tomcat (Maven) Feb 8, 2022
NumPy NULL Pointer Dereference High
CVE-2021-41495 was published for numpy (pip) Feb 8, 2022
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash ... High Unreviewed
CVE-2021-44224 was published Feb 8, 2022
Codesys Profinet in version V4.2.0.0 is prone to null pointer dereference that allows a denial of... High Unreviewed
CVE-2022-22510 was published Feb 3, 2022
MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value... High Unreviewed
CVE-2021-46664 was published Feb 2, 2022
NULL Pointer Dereference in Protocol Buffers High
CVE-2021-22570 was published for Google.Protobuf (Composer) Jan 27, 2022
joshbressers
On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP SSL Forward Proxy with... High Unreviewed
CVE-2022-23016 was published Jan 26, 2022
On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all... High Unreviewed
CVE-2022-23017 was published Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2, when the 'Respond on Error' setting is enabled on the... High Unreviewed
CVE-2022-23020 was published Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2, when any of the following configurations are configured... High Unreviewed
CVE-2022-23021 was published Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2, when an HTTP profile is configured on a virtual server,... High Unreviewed
CVE-2022-23022 was published Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.1, 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, and all... High Unreviewed
CVE-2022-23025 was published Jan 26, 2022
There is a NULL pointer dereference in media/libcedarc/vdecoder of Allwinner R818 SoC Android Q... High Unreviewed
CVE-2021-38786 was published Jan 20, 2022
There is a NULL pointer dereference in the syscall open_exec function of Allwinner R818 SoC... High Unreviewed
CVE-2021-38784 was published Jan 19, 2022
There is a NULL pointer deference in the Allwinner R818 SoC Android Q SDK V1.0 camera driver /dev... High Unreviewed
CVE-2021-38785 was published Jan 19, 2022
mruby is vulnerable to NULL Pointer Dereference High Unreviewed
CVE-2022-0240 was published Jan 18, 2022
Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of service (NULL pointer... High Unreviewed
CVE-2022-23094 was published Jan 16, 2022
kernel/bpf/verifier.c in the Linux kernel through 5.15.14 allows local users to gain privileges... High Unreviewed
CVE-2022-23222 was published Jan 15, 2022
ROPium v3.1 was discovered to contain an invalid memory address dereference via the find() function. High Unreviewed
CVE-2021-45761 was published Jan 15, 2022
A NULL pointer dereference in AcseConnection_parseMessage at src/mms/iso_acse/acse.c of... High Unreviewed
CVE-2021-45769 was published Jan 15, 2022
A NULL pointer dereference in CS104_IPAddress_setFromString at src/iec60870/cs104/cs104_slave.c... High Unreviewed
CVE-2021-45773 was published Jan 15, 2022
Possible null pointer dereference due to improper validation of APE clip in Snapdragon Auto,... High Unreviewed
CVE-2021-30330 was published Jan 14, 2022
The eID module has a null pointer reference vulnerability. Successful exploitation of this... High Unreviewed
CVE-2021-40018 was published Jan 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database