Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,029
Maven
5,000+
npm
5,000+
NuGet
976
pip
5,000+
Pub
13
RubyGems
1,070
Rust
1,404
Swift
61
Unreviewed advisories
All unreviewed
5,000+

4 advisories

Loading
ImageMagick: Heap Buffer Over-Read in IPTC encoder Moderate
CVE-2026-42326 was published for Magick.NET-Q16-AnyCPU (NuGet) May 18, 2026
sukhoon0975 Credited to sukhoon0975
MsQuic has a Remote Elevation of Privilege Vulnerability Critical
CVE-2026-32179 was published for Microsoft.Native.Quic.MsQuic.OpenSSL (NuGet) Apr 16, 2026
ImageMagick has a heap-Buffer-Overflow write of a single zero byte when parsing xml. Moderate
CVE-2026-33899 was published for Magick.NET-Q16-AnyCPU (NuGet) Apr 13, 2026
unbengable12 Credited to unbengable12
ImageMagick CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash (DoS) Moderate
CVE-2025-62594 was published for Magick.NET-Q16-HDRI-OpenMP-arm64 (NuGet) Oct 27, 2025
amethyst0225 Credited to amethyst0225, jin-156, hanbunny, and yosiimich jin-156 jin-156
hanbunny hanbunny yosiimich yosiimich
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database