GHSA-xrrq-rrgq-h89w: static-alloc vulnerability leads to uninitialized read after allocating MemBump

GHSA-h952-963h-rv99: ExecuTorch vulnerable to Heap-based Buffer Overflow attack

GHSA-hq75-xg7r-rx6c: Better Call routing bug can lead to Cache Deception

GHSA-q745-cfqh-hcrw: phpThumb is vulnerable to Command Injection through its gif_outputAsJpeg function

GHSA-j288-q9x7-2f5v: Apache Commons Lang is vulnerable to Uncontrolled Recursion when processing long inputs

Use of insecure hashing algorithm in the Gravatar's service in Navidrome v0.52.3 allows attackers to manipulate a user's account information.

**Navidrome uses MD5 hashing algorithm**

Moderate severity GitHub Reviewed Published Aug 1, 2024 to the GitHub Advisory Database • Updated Aug 2, 2024

Headline

GHSA-hrmx-8jjv-g758: Navidrome uses MD5 hashing algorithm

ghsa: Latest News