AdaCore Cybersecurity Center | AdaCore

skip to main content

AdaCore Cybersecurity Center

At AdaCore we are actively committed to help our customers meet their cybersecurity requirements. We pledge to timely analyze and, if need be, remedy actual vulnerabilities in our products, and to disclose them in a way that balances the interest of our customer and of the community. This page is where your cybersecurity journey starts.

Security Advisories

Ada Web Server does not use Crypto Secure Pseudo Random Number Generator
SEC.AWS-0040-v2.pdf — 2024-09-23
Certificate hostname check is missing when using secure connection
SEC.AWS-0031-v2.pdf — 2024-08-13
Potential memory corruption issue with GNAT.Regexp
SEC.UA16-001-v1.pdf — 2023-05-01
Alignment on a tagged type may cause invalid deallocation
SEC.UB10-053-v1.pdf — 2023-05-01
Memory corruption in GNAT.Sockets.Get_Host_By_Name
SEC.UB16-046-v1.pdf — 2023-05-01
Bidirectional Unicode characters in Ada source code
SEC.UB03-050-v1.pdf — 2022-02-09

IT Security Alerts and Notifications

CVE-2024-3094
2024-04-03
DNSSEC and DMARC Compliance at AdaCore
2024-01-24
Potential ServiceNow Vulnerability Investigation (KB1553688)
2023-10-23

Trust and Transparency

AdaCore Security Policy
2024-03-11
Third Party Services Storing Customer Confidential Information
2024-03-05

Our Experts' Blog

When the RISC-V ISA is the Weakest Link
Yannick Moy
Security-Hardening Software Libraries with Ada and SPARK
Kyriakos Georgiou
Finding Vulnerabilities using Advanced Fuzz testing and AFLplusplus v3.0
Paul Butcher

Prevent security vulnerabilities earlier with our cybersecurity products

Reporting a Vulnerability

If you have information about a possible security issue or vulnerability affecting one of our products, you can report it right here. Our security team will review your submission and work with you to address the issue. Please read our coordinated disclosure policy first.

Report Vulnerability »