GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
322 advisories
AEADs/ascon-aead: Plaintext exposed in decrypt_in_place_detached even on tag verification failure
Moderate
CVE-2025-27498
was published
for
ascon_aead
(Rust)
Mar 3, 2025
Server-Side Request Forgery (SSRF) in activitypub_federation
Moderate
CVE-2025-25194
was published
for
activitypub_federation
(Rust)
Feb 10, 2025
Hickory DNS's DNSSEC validation may accept broken authentication chains
Moderate
CVE-2025-25188
was published
for
hickory-proto
(Rust)
Feb 10, 2025
rust-openssl ssl::select_next_proto use after free
Moderate
CVE-2025-24898
was published
for
openssl
(Rust)
Feb 3, 2025
gix-worktree-state nonexclusive checkout sets executable files world-writable
Moderate
CVE-2025-22620
was published
for
gix-worktree-state
(Rust)
Jan 21, 2025
ProTip!
Advisories are also available from the
GraphQL API