Ref# ADV2026_165 GitHub Security Advisory | Date: Mar 18th 2026

---

GitHub published a security advisory highlighting vulnerabilities in the following products on March 12th, 2026. It is recommended that you take the necessary precautions by ensuring your products are always updated. 

• GitHub Enterprise Server – versions 3.19.x prior to 3.19.4 
• GitHub Enterprise Server – versions 3.18.x prior to 3.18.7 
• GitHub Enterprise Server – versions 3.17.x prior to 3.17.13 
• GitHub Enterprise Server – versions 3.16.x prior to 3.16.16 

For more information on these updates, you can follow these URLs: 

• Enterprise Server 3.19.4 
• Enterprise Server 3.18.7 
• Enterprise Server 3.17.13 
• Enterprise Server 3.16.16 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: GitHub_Security_Advisory

References 

• Enterprise Server 3.19.4.  (March 12, 2026). Retrieved from GitHub. https://docs.github.com/en/enterprise-server@3.19/admin/release-notes  
• Enterprise Server 3.18.7.  (March 12, 2026). Retrieved from GitHub. https://docs.github.com/en/enterprise-server@3.18/admin/release-notes  
• Enterprise Server 3.17.13. (March 12, 2026). Retrieved from GitHub. https://docs.github.com/en/enterprise-server@3.17/admin/release-notes  
• Enterprise Server 3.16.16. (March 12, 2025). Retrieved from GitHub. https://docs.github.com/en/enterprise-server@3.16/admin/release-notes  
• GitHub security advisory. (March 18, 2026). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/github-security-advisory-av26-246