Skip to content

GitHub Advisory Database

2,906 advisories

`add-path` and `set-env` Runner commands are processed via stdout
CVE-2020-15228 (Low severity) was published Oct 1, 2020 @actions/core (npm)
Malicious code in `electorn`
GHSA-38hx-3542-8fh3 (Critical severity) was published Oct 1, 2020 electorn (npm)
Malicious code in `loadyaml`
GHSA-mfc2-93pr-jf92 (Critical severity) was published Oct 1, 2020 loadyaml (npm)
Potential DoS with NumberFilter conversion to integer values.
CVE-2020-15225 (Moderate severity) was published Sep 28, 2020 django-filters (pip)
Out of bounds access in TFLite implementation of segment sum
CVE-2020-15212 (High severity) was published Sep 25, 2020 tensorflow (pip)
Out of bounds write in TFLite implementation of segment sum
CVE-2020-15214 (High severity) was published Sep 25, 2020 tensorflow (pip)
Denial of service from TFLite implementation of segment sum
CVE-2020-15213 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
Segmentation fault and/or data corruption due to invalid TFLite model
CVE-2020-15210 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
Out of bounds access in TFLite operators
CVE-2020-15211 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
Null pointer dereference in TFLite
CVE-2020-15209 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
Data corruption due to dimension mismatch in TFLite
CVE-2020-15208 (High severity) was published Sep 25, 2020 tensorflow (pip)
Segfault and data corruption caused by negative indexing in TFLite
CVE-2020-15207 (High severity) was published Sep 25, 2020 tensorflow (pip)
Segfault by calling session-only ops in eager mode
CVE-2020-15204 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
Incomplete validation in TensorFlow's SavedModel's constant nodes causes segfaults
CVE-2020-15206 (Critical severity) was published Sep 25, 2020 tensorflow (pip)
Data leak in `tf.raw_ops.StringNGrams`
CVE-2020-15205 (Critical severity) was published Sep 25, 2020 tensorflow (pip)
Format-string vulnerability in TensorFlow's `as_string`
CVE-2020-15203 (High severity) was published Sep 25, 2020 tensorflow (pip)
Integer truncation in Shard API usage
CVE-2020-15202 (Critical severity) was published Sep 25, 2020 tensorflow (pip)
Heap buffer overflow due to invalid splits in RaggedCountSparseOutput
CVE-2020-15201 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
Segfault due to invalid splits in RaggedCountSparseOutput
CVE-2020-15200 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
Crash due to invalid splits in SparseCountSparseOutput
CVE-2020-15197 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
Heap buffer overflow in SparseFillEmptyRowsGrad
CVE-2020-15195 (High severity) was published Sep 25, 2020 tensorflow (pip)
Memory corruption in dlpack.to_dlpack
CVE-2020-15193 (High severity) was published Sep 25, 2020 tensorflow (pip)
Undefined behavior in dlpack
CVE-2020-15191 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
Abort due to invalid splits in RaggedCountSparseOutput
CVE-2020-15199 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
Heap buffer overflow due to invalid indices in SparseCountSparseOutput
CVE-2020-15198 (Moderate severity) was published Sep 25, 2020 tensorflow (pip)
ProTip! Advisories are also available from the GraphQL API.
You can’t perform that action at this time.