51 matches found
CLEANSTART-2026-GZ35045 Security fixes for CVE-2024-36537, CVE-2025-47910, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61726, CVE-2025-61727, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2026-25518, CVE-2026-27143, CVE-2026-27144, CVE-2026-29181, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-32952, CVE-2026-33186, CVE-2026-33811, CVE-2026-33814, CVE-2026-35469, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501, ghsa-gx3x-vq4p-mhhv, ghsa-hr2v-4r36-88hr, ghsa-mh2q-q3fh-2475, ghsa-p77j-4mvh-x3m3, ghsa-pc3f-x583-g7j2, ghsa-pjcq-xvwq-hhpj applied in versions: 2.4.0-r1, 2.4.0-r2, 2.4.0-r3
Multiple security vulnerabilities affect the cert-manager-cmctl-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
GHSA-JRG3-GFJW-HM96 vulnerabilities
Vulnerabilities for packages: newrelic-fluent-bit-output, kserve-modelmesh-serving, actions-runner-controller, etcd, descheduler, kubernetes-dashboard, minio-operator, nri-rabbitmq, docker-credential-ecr-login, knative-serving, terraform-docs, flux-operator, git-credential-oauth, cerbos, extism,...
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: newrelic-fluent-bit-output, kserve-modelmesh-serving, actions-runner-controller, etcd, descheduler, kubernetes-dashboard, minio-operator, nri-rabbitmq, docker-credential-ecr-login, knative-serving, terraform-docs, flux-operator, git-credential-oauth, cerbos,...
CLEANSTART-2026-OL32822 Security fixes for CVE-2024-36537, CVE-2025-47910, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61726, CVE-2025-61727, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2026-25518, ghsa-gx3x-vq4p-mhhv applied in versions: 2.4.0-r1, 2.4.0-r2
Multiple security vulnerabilities affect the cert-manager-cmctl-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: actions-runner-controller, snyk-cli, argo-cd, docker-cli-buildx, grype, pulumi, apko, gitaly, terraform-provider-azuread, wolfictl, crossplane-provider-aws-elasticache, flux-source-controller, cerbos, ratify, terragrunt, argo-rollouts, crossplane-provider-aws-eks,...
GHSA-Q9HV-HPM4-HJ6X vulnerabilities
Vulnerabilities for packages: actions-runner-controller, snyk-cli, argo-cd, docker-cli-buildx, grype, pulumi, apko, gitaly, terraform-provider-azuread, wolfictl, crossplane-provider-aws-elasticache, flux-source-controller, cerbos, ratify, terragrunt, argo-rollouts, crossplane-provider-aws-eks,...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: terraform-provider-azuread, crossplane-provider-aws-ecr, docker-cli-buildx-fips, cloudbeat, gitlab-rails-ce, lazygit, reports-server, wal-g, cert-manager-cmctl, crossplane-provider-aws-memorydb, trivy-operator-fips, crossplane-provider-aws-efs-fips, kyverno-fips,...
CVE-2026-25518 vulnerabilities
Vulnerabilities for packages: opentelemetry-operator, opentelemetry-operator-fips, aws-privateca-issuer, percona-xtradb-cluster-operator-fips, step-issuer, cert-manager-cmctl, cert-manager-webhook-pdns, cert-manager-openshift-routes-fips, percona-xtradb-cluster-operator, mariadb-operator-fips,...
CVE-2026-25518 vulnerabilities
Vulnerabilities for packages: step-issuer, cert-manager-istio-csr, aws-privateca-issuer, mariadb-operator, cert-manager-webhook-pdns, opentelemetry-operator, cert-manager-csi-driver, percona-server-mongodb-operator, cert-manager-cmctl...
GHSA-GX3X-VQ4P-MHHV vulnerabilities
Vulnerabilities for packages: step-issuer, cert-manager-istio-csr, aws-privateca-issuer, mariadb-operator, cert-manager-webhook-pdns, opentelemetry-operator, cert-manager-csi-driver, percona-server-mongodb-operator, cert-manager-cmctl...
GHSA-G9Q4-QJX4-2V7Q vulnerabilities
Vulnerabilities for packages: kubernetes-dns-node-cache, flux-notification-controller, mattermost, falco-no-driver, newrelic-fluent-bit-output, bento, dask-gateway, ferretdb, conftest, eksctl, fuse-overlayfs-snapshotter, opentofu, croc, external-dns, ingress-nginx-controller, k3s, kube-arangodb,...
GHSA-XVQR-69V8-F3GV vulnerabilities
Vulnerabilities for packages: newrelic-fluent-bit-output, protoc-gen-go-grpc, kserve-modelmesh-serving, actions-runner-controller, neuvector-sigstore-interface, descheduler, kubernetes-dashboard, langfuse, minio-operator, nri-rabbitmq, docker-credential-ecr-login, tekton-pipelines, knative-servin...
GHSA-CM6P-QC7V-M3JW vulnerabilities
Vulnerabilities for packages: newrelic-fluent-bit-output, protoc-gen-go-grpc, kserve-modelmesh-serving, actions-runner-controller, neuvector-sigstore-interface, descheduler, kubernetes-dashboard, langfuse, minio-operator, nri-rabbitmq, docker-credential-ecr-login, tekton-pipelines, knative-servin...
GHSA-GM9R-Q53W-2GH4 vulnerabilities
Vulnerabilities for packages: chisel, falco-no-driver, gke-gcloud-auth-plugin, newrelic-fluent-bit-output, octo-sts, whereabouts, kserve-modelmesh-serving, pgpool2exporter, actions-runner-controller, eksctl, harbor-registry, tofu-controller, neuvector-sigstore-interface, argo-cd, nats-top,...
GHSA-GR56-3GP6-6GMJ vulnerabilities
Vulnerabilities for packages: chisel, falco-no-driver, gke-gcloud-auth-plugin, newrelic-fluent-bit-output, octo-sts, whereabouts, terraform-provider-time, kserve-modelmesh-serving, pgpool2exporter, actions-runner-controller, eksctl, harbor-registry, tofu-controller, neuvector-sigstore-interface,...
CVE-2025-61726 vulnerabilities
Vulnerabilities for packages: chisel, falco-no-driver, gke-gcloud-auth-plugin, newrelic-fluent-bit-output, octo-sts, whereabouts, kserve-modelmesh-serving, pgpool2exporter, actions-runner-controller, eksctl, harbor-registry, tofu-controller, neuvector-sigstore-interface, argo-cd, nats-top,...
CLEANSTART-2026-OH86281 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process
Multiple security vulnerabilities affect the cert-manager-cmctl-fips package. SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process. See references for individual vulnerability details...
CLEANSTART-2026-LL43287 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process
Multiple security vulnerabilities affect the cert-manager-cmctl-fips package. SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process. See references for individual vulnerability details...
CLEANSTART-2026-EJ58111 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process
Multiple security vulnerabilities affect the cert-manager-cmctl-fips package. SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process. See references for individual vulnerability details...
CVE-2024-12401 vulnerabilities
Vulnerabilities for packages: step-issuer, cert-manager-istio-csr, aws-privateca-issuer, cert-manager-webhook-pdns, cert-exporter, cert-manager-cmctl...