CLEANSTART-2026-JC64695 Security fixes for CVE-2025-61732, CVE-2025-68121, CVE-2026-26958, CVE-2026-35469, ghsa-f6x5-jh6r-wrfv, ghsa-fw7p-63qq-7hpr, ghsa-gx3x-vq4p-mhhv, ghsa-j5w8-q4qc-rx2x, ghsa-mh2q-q3fh-2475, ghsa-pc3f-x583-g7j2 applied in versions: 1.16.1-r0, 1.16.1-r1, 1.18.0-r0, 1.19.0-r1

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-JO51351 Security fixes for CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-35469, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x, ghsa-pc3f-x583-g7j2 applied in versions: 1.18.0-r0, 1.19.0-r0, 1.19.1-r0, 1.19.1-r1

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-GE45898 Security fixes for CVE-2026-33811, CVE-2026-33814, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501 applied in versions: 2.20.1-r0

Multiple security vulnerabilities affect the rabbitmq-cluster-operator package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-IP78312 Security fixes for CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-35469, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501, ghsa-pc3f-x583-g7j2 applied in versions: 2.19.2-r0, 2.19.2-r1, 2.19.2-r2, 2.19.2-r3

Multiple security vulnerabilities affect the rabbitmq-cluster-operator package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-BB70412 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator-fips package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability...

CLEANSTART-2026-AL68245 filippo

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator-fips package. filippo. See references for individual vulnerability details...

CLEANSTART-2026-VZ35122 filippo

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator package. filippo. See references for individual vulnerability details...

CLEANSTART-2026-IY92636 During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succ...

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator package. During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it...

CLEANSTART-2026-JZ43336 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

CVE-2026-25518 vulnerabilities

Vulnerabilities for packages: percona-server-mongodb-operator-fips, cert-manager-istio-csr-fips, aws-privateca-issuer-fips, aws-privateca-issuer, cert-manager-webhook-pdns-fips, cert-manager-cmctl, cert-manager-csi-driver, step-issuer-fips, mariadb-operator, cert-manager-csi-driver-fips,...

CVE-2025-61726 vulnerabilities

Vulnerabilities for packages: bom, flannel, opencost, terraform, ytt, dynamic-localpv-provisioner, local-path-provisioner, nats-top, cert-manager-cmctl, kine, crossplane-provider-aws-rds, mesosphere-vsphere-csi, nri-jmx, redis-operator, azurefile-csi, kserve-modelmesh-serving, aws-flb-cloudwatch,...

GHSA-XVQR-69V8-F3GV vulnerabilities

Vulnerabilities for packages: flannel, local-path-provisioner, nats-top, redis-operator, mesosphere-vsphere-csi, kserve-modelmesh-serving, mountpoint-s3-csi-driver, nginx-prometheus-exporter, osv-scanner, spire-controller-manager, kuberlr, pgpool2exporter, sbom-scorecard, protoc-gen-go, kubecolor...

GHSA-GM9R-Q53W-2GH4 vulnerabilities

Vulnerabilities for packages: bom, flannel, opencost, terraform, ytt, dynamic-localpv-provisioner, local-path-provisioner, nats-top, cert-manager-cmctl, kine, crossplane-provider-aws-rds, mesosphere-vsphere-csi, nri-jmx, redis-operator, azurefile-csi, kserve-modelmesh-serving, aws-flb-cloudwatch,...

CVE-2025-61730 vulnerabilities

Vulnerabilities for packages: gosu, pguser, contour, kubo, goreleaser, terraform-provider-azapi-fips, nri-haproxy, aws-sigv4-proxy-fips, helm-diff, cert-manager-csi-driver-fips, nri-couchbase-fips, kubescape-operator-fips, grafana-beyla, kyverno-policy-reporter-plugins-kyverno, nova-fips,...

GHSA-GR56-3GP6-6GMJ vulnerabilities

Vulnerabilities for packages: gosu, pguser, contour, kubo, goreleaser, terraform-provider-azapi-fips, nri-haproxy, aws-sigv4-proxy-fips, helm-diff, cert-manager-csi-driver-fips, nri-couchbase-fips, kubescape-operator-fips, grafana-beyla, kyverno-policy-reporter-plugins-kyverno, nova-fips,...

CVE-2025-61726 vulnerabilities

Vulnerabilities for packages: gosu, pguser, contour, kubernetes-csi-driver-hostpath, kubo, goreleaser, terraform-provider-azapi-fips, aws-sigv4-proxy-fips, helm-diff, cert-manager-csi-driver-fips, kubescape-operator-fips, grafana-beyla, kyverno-policy-reporter-plugins-kyverno, nova-fips,...

GHSA-XVQR-69V8-F3GV vulnerabilities

Vulnerabilities for packages: gosu, pguser, contour, kubernetes-csi-driver-hostpath, kubo, goreleaser, terraform-provider-azapi-fips, nri-haproxy, aws-sigv4-proxy-fips, helm-diff, cert-manager-csi-driver-fips, flannel-cni-plugin-fips, nri-couchbase-fips, kubescape-operator-fips, grafana-beyla,...

CVE-2025-68119 vulnerabilities

Vulnerabilities for packages: gosu, pguser, contour, kubernetes-csi-driver-hostpath, kubo, goreleaser, terraform-provider-azapi-fips, nri-haproxy, aws-sigv4-proxy-fips, helm-diff, cert-manager-csi-driver-fips, flannel-cni-plugin-fips, nri-couchbase-fips, kubescape-operator-fips, grafana-beyla,...

CVE-2025-61731 vulnerabilities

Vulnerabilities for packages: gosu, pguser, contour, kubernetes-csi-driver-hostpath, kubo, goreleaser, terraform-provider-azapi-fips, nri-haproxy, aws-sigv4-proxy-fips, helm-diff, cert-manager-csi-driver-fips, flannel-cni-plugin-fips, nri-couchbase-fips, kubescape-operator-fips, grafana-beyla,...

GHSA-CM6P-QC7V-M3JW vulnerabilities

Vulnerabilities for packages: gosu, pguser, contour, kubernetes-csi-driver-hostpath, kubo, goreleaser, terraform-provider-azapi-fips, nri-haproxy, aws-sigv4-proxy-fips, helm-diff, cert-manager-csi-driver-fips, flannel-cni-plugin-fips, nri-couchbase-fips, kubescape-operator-fips, grafana-beyla,...