Julia Security
Advisories
The security advisory database for packages in the Julia ecosystem. Browse known vulnerabilities, check affected versions, and stay informed.
Tracking 830 advisories across 114 packages — 10 new in the last 30 days.
Latest
View all →JLSEC-2026-492No summary availableJLSEC-2026-373CVSS_V4No summary availableJLSEC-2026-372CVSS_V4No summary availableJLSEC-2026-497Medium 4.0Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bou…JLSEC-2026-496Medium 6.7Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of servi…JLSEC-2026-281CVSS_V4RClone: Unauthenticated operations/fsinfo allows attacker-controlled backend instantiatio…JLSEC-2026-280CVSS_V4Rclone: Unauthenticated options/set allows runtime auth bypass, leading to sensitive oper…JLSEC-2026-213CVSS_V4When sed is invoked with both -i (in-place edit) and --follow-symlinks, the function...JLSEC-2026-491No summary availableJLSEC-2026-384No summary available
Read
Browse advisories
See published advisories, recent disclosures, and the affected version ranges.
Explore
Check affected packages
Find packages in the Julia ecosystem that already have published security advisories.
Contribute
Report/Update an advisory
Read the reporting guidance, contribution process, and advisory update workflow.