GO-2026-4737 Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121 in github.com/argoproj-labs/terraform-provider-argocd

Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121 in github.com/argoproj-labs/terraform-provider-argocd...

GHSA-594F-3595-C47V Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121

Summary The terraform-provider-argocd might have been vulnerable to GO-2026-4337 / CVE-2025-68121 "Unexpected session resumption in crypto/tls". Details See https://pkg.go.dev/vuln/GO-2026-4337 for the upstream vulnerability. Provider versions starting with v7.15.1 are using go 1.25.8 for buildin...

CVE-2026-24051 vulnerabilities

Vulnerabilities for packages: zot, jaeger-operator, skaffold, kyverno-fips, op-geth, spicedb-fips, docker-cli-buildx, keda-fips, harbor-fips, azuredisk-csi-fips, opencost-fips, kubescape-server-fips, syft, tekton-chains-fips, fulcio-fips, trillian, pulumi-kubernetes-operator,...

GHSA-9H8M-3FM2-QJRQ vulnerabilities

Vulnerabilities for packages: zot, jaeger-operator, skaffold, kyverno-fips, op-geth, spicedb-fips, docker-cli-buildx, keda-fips, harbor-fips, azuredisk-csi-fips, opencost-fips, kubescape-server-fips, syft, tekton-chains-fips, fulcio-fips, trillian, pulumi-kubernetes-operator,...

CLEANSTART-2026-LS98939 go-git is a highly extensible git implementation library written in pure Go

Multiple security vulnerabilities affect the argo-cd-fips package. go-git is a highly extensible git implementation library written in pure Go. See references for individual vulnerability details...

CLEANSTART-2026-YW12690 go-git is a highly extensible git implementation library written in pure Go

Multiple security vulnerabilities affect the argo-cd-fips package. go-git is a highly extensible git implementation library written in pure Go. See references for individual vulnerability details...

CLEANSTART-2026-QC30410 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate

Multiple security vulnerabilities affect the argo-cd-fips package. Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate. See references for individual vulnerability details...

CLEANSTART-2026-WP10148 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate

Multiple security vulnerabilities affect the argo-cd-fips package. Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate. See references for individual vulnerability details...

CLEANSTART-2026-AC12204 go-git is a highly extensible git implementation library written in pure Go

Multiple security vulnerabilities affect the argo-cd-fips package. go-git is a highly extensible git implementation library written in pure Go. See references for individual vulnerability details...

CLEANSTART-2026-AJ16639 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate

Multiple security vulnerabilities affect the argo-cd-fips package. Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate. See references for individual vulnerability details...

CLEANSTART-2026-FF98917 go-git is a highly extensible git implementation library written in pure Go

Multiple security vulnerabilities affect the argo-cd package. go-git is a highly extensible git implementation library written in pure Go. See references for individual vulnerability details...

CLEANSTART-2026-ER93728 go-git is a highly extensible git implementation library written in pure Go

Multiple security vulnerabilities affect the argo-cd-fips package. go-git is a highly extensible git implementation library written in pure Go. See references for individual vulnerability details...

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: xeol, crossplane-provider-aws-kinesis, crossplane-provider-aws-ec2, argo-rollouts, crossplane-provider-azure-authorization, grafana-alloy, crossplane-provider-aws-route53, k9s, zot, actions-runner-controller, crossplane-provider-aws-iam,...

GHSA-Q9HV-HPM4-HJ6X vulnerabilities

Vulnerabilities for packages: xeol, crossplane-provider-aws-kinesis, crossplane-provider-aws-ec2, argo-rollouts, crossplane-provider-azure-authorization, grafana-alloy, crossplane-provider-aws-route53, k9s, zot, actions-runner-controller, crossplane-provider-aws-iam,...

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: flux-source-controller-fips, helm-push, zot, argocd-image-updater, extism, crossplane-provider-aws-kms, trivy-fips, skaffold, omni, boring-registry, rancher-fleet, flux-helm-controller-fips, q, terraform, vcluster, helm-diff-fips, apko,...

GHSA-Q9HV-HPM4-HJ6X vulnerabilities

Vulnerabilities for packages: flux-source-controller-fips, helm-push, zot, argocd-image-updater, extism, crossplane-provider-aws-kms, trivy-fips, skaffold, omni, boring-registry, rancher-fleet, flux-helm-controller-fips, q, terraform, vcluster, helm-diff-fips, apko,...

CLEANSTART-2026-PN58989 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate

Multiple security vulnerabilities affect the argo-cd package. Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate. See references for individual vulnerability details...

CLEANSTART-2026-YQ79300 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate

Multiple security vulnerabilities affect the argo-cd package. Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate. See references for individual vulnerability details...

CLEANSTART-2026-IO04548 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate

Multiple security vulnerabilities affect the argo-cd package. Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate. See references for individual vulnerability details...

CVE-2026-25934 vulnerabilities

Vulnerabilities for packages: flux-source-controller-fips, zot, argocd-image-updater, trivy-fips, skaffold, rancher-fleet, apko, flux-source-watcher, src-fingerprint, kargo, flux-image-automation-controller, kyverno-fips, pulumi-language-java, snyk-cli, trufflehog-fips, gomplate-fips, syft-fips,...