161 matches found
GHSA-XCGV-8MV7-V8C7 vulnerabilities
Vulnerabilities for packages: external-secrets-operator-fips, buildah, karpenter-fips, kots, rclone-fips, argo-cd-fips, frankenphp-8.3, ocm-cli, flux, gitlab-workhorse-ce, knative-eventing-fips, timestamp-authority-fips, opentelemetry-collector-k8s, azurefile-csi-fips, grype-fips, opentofu, dapr,...
GHSA-XCGV-8MV7-V8C7 vulnerabilities
Vulnerabilities for packages: cloud-provider-aws, containerd, dataplaneapi, grafana-operator, karpenter, grype, flux, nerdctl, undock, opentofu, k3s, zarf, redka, grafana-alloy, cilium, helm, pinact, kube-fluentd-operator, mattermost, apko, docker-cli-buildx, buildah, azurefile-csi, loki, glab,...
GHSA-9M57-25V3-79X9 vulnerabilities
Vulnerabilities for packages: external-secrets-operator-fips, buildah, kots, argo-cd-fips, frankenphp-8.3, flux, spire-server, tigera-operator, knative-eventing-fips, aactl, opentofu, zitadel, commercial-grafana, prometheus, podman-fips, packer-fips, omnictl-multiarch, gitlab-rails-ce,...
GHSA-W879-237Q-WC7R vulnerabilities
Vulnerabilities for packages: chisel, grype, gitea, flux, kubescape, zot, helm, argocd-image-updater, syft, pulumi-language-yaml, docker-cli-buildx, external-dns, cert-manager, pulumi-language-java, mods, kots, flux-source-controller, gatus, flux-image-automation-controller, kubernetes, kargo,...
GHSA-JPPX-RXG9-JMRX vulnerabilities
Vulnerabilities for packages: cloud-provider-aws, containerd, minio, knative-serving, flux, nerdctl, vitess, k3s, cilium, helm, zot, mattermost, aactl, docker-cli-buildx, buildah, loki, kaf, external-dns, cert-manager, podman, prometheus, kine, gitlab-kas, kots, spire-server, kubernetes,...
CVE-2026-53489 vulnerabilities
Vulnerabilities for packages: kube-mgmt-fips, kots, helm-operator-fips, tw, tigera-operator, datadog-agent, harvester-fips, syft-fips, grype-fips, newrelic-infrastructure-agent-fips, dagger, newrelic-infrastructure-agent, rancher-helm, redpanda-operator, packer-fips, gitlab-rails-ce,...
GHSA-XHF5-7WJV-PQXP vulnerabilities
Vulnerabilities for packages: kube-mgmt-fips, kots, helm-operator-fips, tw, tigera-operator, datadog-agent, harvester-fips, syft-fips, grype-fips, newrelic-infrastructure-agent-fips, dagger, newrelic-infrastructure-agent, rancher-helm, redpanda-operator, packer-fips, gitlab-rails-ce,...
ROOT-APP-GOBINARY-CVE-2025-15558 CVE-2025-15558 in rootio-github.com/docker/cli - Patched by Root
Root has patched CVE-2025-15558 in the rootio-github.com/docker/cli package for Root:Go. Multiple fixed versions available...
CVE-2026-39821 affecting package docker-cli for versions less than 25.0.7-3
CVE-2026-39821 affecting package docker-cli for versions less than 25.0.7-3. A patched version of the package is available...
CVE-2026-6406
The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation ECI restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from containers are denied unless explicitly allowed via the admin-settings configuration. However, the --use-api-socket flag adds the Docker...
Astra Linux – Vulnerability in docker.io
Docker CLI is the command-line interface for the Docker container runtime. A bug was discovered in Docker CLI where running docker login my-private-registry.example.com with a misconfigured configuration file typically /.docker/config.json, which lists a credsStore or credhelpers that cannot be...
[SECURITY] Fedora 42 Update: podman-5.8.2-1.fc42
podman Pod Manager is a fully featured container engine that is a simple daemonless tool. podman provides a Docker-CLI comparable command line that eases the transition from other container engines and allows the management of pods, containers and images. Simply put: alias docker=3Dpodman. Most...
GHSA-PC3F-X583-G7J2 vulnerabilities
Vulnerabilities for packages: rancher-fleet, kubernetes-dashboard-api, envoy-gateway, k3s, eksctl, linkerd2, zarf, kubescape, k8sgpt-operator, cri-tools, cilium, percona-server-mongodb-operator, argocd-image-updater, gitlab-runner, trivy-operator, k8ssandra-client, kubevela, docker-cli-buildx,...
[SECURITY] Fedora 43 Update: podman-5.8.2-1.fc43
podman Pod Manager is a fully featured container engine that is a simple daemonless tool. podman provides a Docker-CLI comparable command line that eases the transition from other container engines and allows the management of pods, containers and images. Simply put: alias docker=3Dpodman. Most...
Security Bulletin: IBM Planning Analytics Cartridge has addressed a security vulnerability in Docker CLI (CVE-2025-15558)
Summary IBM Planning Analytics Cartridge is considered affected by a vulnerability in Docker CLI Vulnerability Details CVEID:CVE-2025-15558 DESCRIPTION: Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that does not exist by default. A...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: flux, kubernetes-csi-driver-hostpath, yunikorn-k8shim, mcp-grafana, terraform-provider-sendgrid, cloud-provider-azure, gatekeeper, kubescape, modelmesh-runtime-adapter, helm, argocd-image-updater, contour, redka, sftpgo-plugin-auth, syft, terraform-provider-time, zot...
GHSA-X4JJ-H2V8-HQQV vulnerabilities
Vulnerabilities for packages: external-secrets-operator-fips, kube-mgmt-fips, gh, falcoctl, ko-fips, flux-source-controller-fips, spire-server, gitlab-workhorse-ce, opentofu, zitadel, commercial-grafana, prometheus, flux-operator, net-kourier-fips, libnvidia-container, prometheus-podman-exporter,...
CVE-2026-32288 vulnerabilities
Vulnerabilities for packages: external-secrets-operator-fips, kube-mgmt-fips, gh, falcoctl, ko-fips, flux-source-controller-fips, spire-server, gitlab-workhorse-ce, opentofu, zitadel, commercial-grafana, prometheus, flux-operator, net-kourier-fips, libnvidia-container, prometheus-podman-exporter,...
GHSA-JRG3-GFJW-HM96 vulnerabilities
Vulnerabilities for packages: external-secrets-operator-fips, kube-mgmt-fips, kyverno-policy-reporter-ui-fips, harbor-scanner-trivy, actions-runner-controller-fips, gh, cluster-proportional-autoscaler, falcoctl, ko-fips, flux-source-controller-fips, prometheus-statsd-exporter-fips,...
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: external-secrets-operator-fips, kube-mgmt-fips, kyverno-policy-reporter-ui-fips, harbor-scanner-trivy, actions-runner-controller-fips, gh, cluster-proportional-autoscaler, falcoctl, ko-fips, flux-source-controller-fips, prometheus-statsd-exporter-fips,...