51 matches found
CLEANSTART-2026-GZ35045 Security fixes for CVE-2024-36537, CVE-2025-47910, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61726, CVE-2025-61727, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2026-25518, CVE-2026-27143, CVE-2026-27144, CVE-2026-29181, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-32952, CVE-2026-33186, CVE-2026-33811, CVE-2026-33814, CVE-2026-35469, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501, ghsa-gx3x-vq4p-mhhv, ghsa-hr2v-4r36-88hr, ghsa-mh2q-q3fh-2475, ghsa-p77j-4mvh-x3m3, ghsa-pc3f-x583-g7j2, ghsa-pjcq-xvwq-hhpj applied in versions: 2.4.0-r1, 2.4.0-r2, 2.4.0-r3
Multiple security vulnerabilities affect the cert-manager-cmctl-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
GHSA-JRG3-GFJW-HM96 vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester, vendir, hey, cadvisor, amass, task, kubernetes-csi-external-attacher, aws-node-termination-handler, metrics-agent, flux-source-controller, supercronic, chart-testing, grpc-health-probe, trivy, terraform-docs, infinispan-operator, flux...
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: docker-machine-driver-harvester, vendir, hey, cadvisor, amass, task, kubernetes-csi-external-attacher, mkcert, aws-node-termination-handler, metrics-agent, flux-source-controller, supercronic, chart-testing, grpc-health-probe, trivy, terraform-docs,...
CLEANSTART-2026-OL32822 Security fixes for CVE-2024-36537, CVE-2025-47910, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61726, CVE-2025-61727, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2026-25518, ghsa-gx3x-vq4p-mhhv applied in versions: 2.4.0-r1, 2.4.0-r2
Multiple security vulnerabilities affect the cert-manager-cmctl-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: skaffold, scorecard, crossplane-provider-azure-sql, gitlab-runner, syft, dagger, flux-source-controller, terraform-provider-azurerm, grafana-alloy, kubescape, argo-events, trivy, argo-rollouts, flux, zarf, terraform-provider-pagerduty, flux-kustomize-controller, kots...
GHSA-Q9HV-HPM4-HJ6X vulnerabilities
Vulnerabilities for packages: skaffold, scorecard, crossplane-provider-azure-sql, gitlab-runner, syft, dagger, flux-source-controller, terraform-provider-azurerm, grafana-alloy, kubescape, argo-events, trivy, argo-rollouts, flux, zarf, terraform-provider-pagerduty, flux-kustomize-controller, kots...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: flux-source-controller-fips, ratify-fips, argocd-image-updater-fips, gitlab-runner-fips, amazon-ssm-agent-fips, crossplane-provider-aws-firehose-fips, crossplane-provider-azure-managedidentity, crossplane-provider-keycloak, crossplane-provider-keycloak-fips, aactl,...
CVE-2026-25518 vulnerabilities
Vulnerabilities for packages: cert-manager-istio-csr-fips, cert-manager-cmctl-fips, opentelemetry-operator, aws-privateca-issuer-fips, cert-manager-openshift-routes, mariadb-operator, percona-xtradb-cluster-operator-fips, cert-manager-google-cas-issuer-fips, cert-manager-google-cas-issuer,...
CVE-2026-25518 vulnerabilities
Vulnerabilities for packages: cert-manager-cmctl, cert-manager-istio-csr, mariadb-operator, aws-privateca-issuer, cert-manager-csi-driver, opentelemetry-operator, percona-server-mongodb-operator, cert-manager-webhook-pdns, step-issuer...
GHSA-GX3X-VQ4P-MHHV vulnerabilities
Vulnerabilities for packages: cert-manager-cmctl, cert-manager-istio-csr, mariadb-operator, aws-privateca-issuer, cert-manager-csi-driver, opentelemetry-operator, percona-server-mongodb-operator, cert-manager-webhook-pdns, step-issuer...
GHSA-G9Q4-QJX4-2V7Q vulnerabilities
Vulnerabilities for packages: gatekeeper, minio, eksctl, fuse-overlayfs-snapshotter, newrelic-fluent-bit-output, aactl, scorecard, goreleaser, kubernetes-dns-node-cache, cilium-cli, runc, steampipe, ferretdb, kubernetes-dashboard-api, traefik, external-secrets-operator, timoni, hubble,...
GHSA-XVQR-69V8-F3GV vulnerabilities
Vulnerabilities for packages: hey, timescaledb-tune, metallb, amass, steampipe, kubernetes-csi-external-attacher, mkcert, mockgen, chart-testing, terraform-docs, flux, cluster-autoscaler, dapr, gitness, podinfo, crossplane-provider-aws-dynamodb, docker-credential-gcr, kubeflow, cri-tools,...
GHSA-GM9R-Q53W-2GH4 vulnerabilities
Vulnerabilities for packages: rancher-system-upgrade-controller, hey, local-path-provisioner, s5cmd, scorecard, volume-modifier-for-k8s, timescaledb-parallel-copy, influx, kbld, crossplane-provider-azure-sql, amass, steampipe, gitlab-runner, kubernetes-csi-external-attacher, timoni,...
GHSA-CM6P-QC7V-M3JW vulnerabilities
Vulnerabilities for packages: hey, timescaledb-tune, metallb, amass, steampipe, kubernetes-csi-external-attacher, mkcert, mockgen, chart-testing, terraform-docs, flux, cluster-autoscaler, dapr, gitness, podinfo, crossplane-provider-aws-dynamodb, docker-credential-gcr, kubeflow, cri-tools,...
GHSA-GR56-3GP6-6GMJ vulnerabilities
Vulnerabilities for packages: rancher-system-upgrade-controller, hey, local-path-provisioner, s5cmd, scorecard, volume-modifier-for-k8s, timescaledb-parallel-copy, influx, kbld, crossplane-provider-azure-sql, amass, steampipe, gitlab-runner, kubernetes-csi-external-attacher, timoni,...
CVE-2025-61726 vulnerabilities
Vulnerabilities for packages: rancher-system-upgrade-controller, hey, local-path-provisioner, s5cmd, scorecard, volume-modifier-for-k8s, timescaledb-parallel-copy, influx, kbld, crossplane-provider-azure-sql, amass, steampipe, gitlab-runner, kubernetes-csi-external-attacher, timoni,...
CLEANSTART-2026-OH86281 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process
Multiple security vulnerabilities affect the cert-manager-cmctl-fips package. SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process. See references for individual vulnerability details...
CLEANSTART-2026-LL43287 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process
Multiple security vulnerabilities affect the cert-manager-cmctl-fips package. SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process. See references for individual vulnerability details...
CLEANSTART-2026-EJ58111 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process
Multiple security vulnerabilities affect the cert-manager-cmctl-fips package. SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process. See references for individual vulnerability details...
CVE-2024-12401 vulnerabilities
Vulnerabilities for packages: cert-manager-cmctl, cert-manager-istio-csr, aws-privateca-issuer, step-issuer, cert-manager-webhook-pdns, cert-exporter...