Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
46
GitHub Actions
47
Go
3,323
Maven
5,000+
npm
5,000+
NuGet
880
pip
4,533
Pub
12
RubyGems
1,010
Rust
1,201
Swift
51
Unreviewed advisories
All unreviewed
5,000+

1,500 advisories

Loading
A memory leak exists in the Grassroots DICOM library (GDCM). The bug occurs when parsing... High Unreviewed
CVE-2026-3650 was published Mar 27, 2026
ImageMagick: META reader memory leak in the APP1JPEG input path Low
GHSA-9r56-3gjq-hqf7 was published for Magick.NET-Q16-AnyCPU (NuGet) Mar 26, 2026
unbengable12 Credited to unbengable12
ImageMagick has possible memory leak in ASHLAR coder when action fails Low
GHSA-6p22-q7w5-33pg was published for Magick.NET-Q16-AnyCPU (NuGet) Mar 26, 2026
unbengable12 Credited to unbengable12
When a challenge ACK is to be sent tcp_respond() constructs and sends the challenge ACK and... High Unreviewed
CVE-2026-4247 was published Mar 26, 2026
A vulnerability in the Internet Key Exchange version 2 (IKEv2) feature of Cisco IOS Software,... High Unreviewed
CVE-2026-20012 was published Mar 25, 2026
Missing Release of Memory after Effective Lifetime vulnerability in MolotovCherry Android... High Unreviewed
CVE-2026-33852 was published Mar 24, 2026
Missing Release of Memory after Effective Lifetime vulnerability in MolotovCherry Android... High Unreviewed
CVE-2026-33856 was published Mar 24, 2026
UltraJSON has a Memory Leak parsing large integers allows DoS High
CVE-2026-32874 was published for ujson (pip) Mar 18, 2026
Skevros Credited to Skevros and bwoodsend bwoodsend bwoodsend
in OpenHarmony v6.0 and prior versions allow a local attacker case DOS through missing release of... Low Unreviewed
CVE-2026-0639 was published Mar 16, 2026
The Eclipse Jetty Server Artifact has a Gzip request memory leak High
CVE-2026-1605 was published for org.eclipse.jetty:jetty-server (Maven) Mar 5, 2026
glebashnik Credited to glebashnik and bjorncs bjorncs bjorncs
A vulnerability in the OSPF protocol of Cisco Secure Firewall Adaptive Security Appliance (ASA)... Moderate Unreviewed
CVE-2026-20021 was published Mar 4, 2026
A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive... High Unreviewed
CVE-2026-20105 was published Mar 4, 2026
A vulnerability in the Remote Access SSL VPN, HTTP management and MUS functionality, of Cisco... Moderate Unreviewed
CVE-2026-20106 was published Mar 4, 2026
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD... Moderate Unreviewed
CVE-2026-20015 was published Mar 4, 2026
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD... High Unreviewed
CVE-2026-20014 was published Mar 4, 2026
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD... Moderate Unreviewed
CVE-2026-20013 was published Mar 4, 2026
ImageMagick: Memory Leak in multiple coders that write raw pixel data Low
GHSA-wfx3-6g53-9fgc was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 25, 2026
ylwango613 Credited to ylwango613
ImageMagick: Memory leak in coders/txt.c without freetype Low
GHSA-3q5f-gmjc-38r8 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 25, 2026
unbengable12 Credited to unbengable12
ImageMagick: MSL image stack index may fail to refresh, leading to leaked images Moderate
CVE-2026-25988 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 24, 2026
ylwango613 Credited to ylwango613
Image Magick has a Memory Leak in coders/ashlar.c Moderate
CVE-2026-25969 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 24, 2026
unbengable12 Credited to unbengable12
ImageMagick has memory leak of watermark Image object in ReadSTEGANOImage on multiple error/early-return paths Moderate
CVE-2026-25796 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 24, 2026
ylwango613 Credited to ylwango613
ImageMagick has memory leak in msl encoder Moderate
CVE-2026-25638 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 24, 2026
unbengable12 Credited to unbengable12
ImageMagick: Possible memory leak in ASHLAR encoder Moderate
CVE-2026-25637 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 24, 2026
ylwango613 Credited to ylwango613
saitoha libsixel until v1.8.7 was discovered to contain a memory leak via the component... Moderate Unreviewed
CVE-2025-61146 was published Feb 23, 2026
In the Linux kernel, the following vulnerability has been resolved: smb: server: fix leak of... Moderate Unreviewed
CVE-2026-23228 was published Feb 18, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database