GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
211 advisories
Ella Core: AMF DoS via malformed PathSwitchRequest with empty NR security capability bitstrings
Moderate
CVE-2026-32320
was published
for
github.com/ellanetworks/core
(Go)
Mar 12, 2026
Ella Core vulnerable to Unauthenticated AMF DoS via malformed InitialUEMessage with undersized integrity-protected NAS payload
High
CVE-2026-32319
was published
for
github.com/ellanetworks/core
(Go)
Mar 12, 2026
ImageMagick has Heap Buffer Over-Read in BilateralBlurImage
Moderate
CVE-2026-30935
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 12, 2026
ImageMagick: Integer overflow in DIB coder can result in out of bounds read or write
High
CVE-2026-28693
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 12, 2026
ImageMagick: Heap overflow in pcd decoder leads to out of bounds read.
Moderate
CVE-2026-26284
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 12, 2026
ImageMagick has Heap Out-of-Bounds Read in DCM Decoder (ReadDCMImage)
Moderate
CVE-2026-25982
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 12, 2026
.NET Denial of Service Vulnerability
High
CVE-2026-26127
was published
for
Microsoft.Bcl.Memory
(NuGet)
Mar 11, 2026
ImageMagick has a heap buffer over-read via 32-bit integer overflow in MAT decoder
Moderate
CVE-2026-28692
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Mar 10, 2026
ImageMagick: Heap Buffer Over-read in WaveletDenoise when processing small images
Moderate
CVE-2026-27798
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick: Heap-based Buffer Overflow in GetPixelIndex due to metadata-cache desynchronization
Low
GHSA-gq5v-qf8q-fp77
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick: Malicious PCD files trigger 1‑byte heap Out-of-bounds Read and DoS
Low
GHSA-wgxp-q8xq-wpp9
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick: Integer Overflow in PSB (PSD v2) RLE decoding path causes heap Out of Bounds reads for 32-bit builds
Low
CVE-2026-25984
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick has a heap buffer over-read in its MAP image decoder
Moderate
CVE-2026-25987
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 24, 2026
ImageMagick has Global Buffer Overflow (OOB Read) via Negative Pixel Index in UIL and XPM Writer
Moderate
CVE-2026-25898
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 24, 2026
Wasmtime segfault or unused out-of-sandbox load with f64.copysign operator on x86-64
Moderate
CVE-2026-24116
was published
for
wasmtime
(Rust)
Jan 27, 2026
aircompressor Snappy and LZ4 Java-based decompressor implementation can leak information from reused output buffer
High
CVE-2025-67721
was published
for
io.airlift:aircompressor
(Maven)
Dec 12, 2025
ImageMagick is vulnerable to an integer Overflow in TIM decoder leading to out of bounds read (32-bit only)
High
CVE-2025-66628
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Dec 10, 2025
LZ4 Java Compression has Out-of-bounds memory operations which can cause DoS
High
CVE-2025-12183
was published
for
at.yawk.lz4:lz4-java
(Maven)
Nov 28, 2025
golang.org/x/crypto/ssh/agent vulnerable to panic if message is malformed due to out of bounds read
Moderate
CVE-2025-47914
was published
for
golang.org/x/crypto
(Go)
Nov 19, 2025
ProTip!
Advisories are also available from the
GraphQL API