CLEANSTART-2026-AH59738 Security fixes for CVE-2026-35469, ghsa-hr2v-4r36-88hr, ghsa-pc3f-x583-g7j2 applied in versions: 26.4.2

Multiple security vulnerabilities affect the linkerd2 package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-HI64288 Security fixes for CVE-2026-35469, ghsa-hr2v-4r36-88hr, ghsa-pc3f-x583-g7j2 applied in versions: 26.4.2

Multiple security vulnerabilities affect the linkerd2 package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-QX43073 Security fixes for CVE-2026-29181, CVE-2026-33186, CVE-2026-35469, ghsa-hr2v-4r36-88hr, ghsa-mh2q-q3fh-2475, ghsa-p77j-4mvh-x3m3, ghsa-pc3f-x583-g7j2 applied in versions: 26.1.4-r0, 26.3.3-r0

Multiple security vulnerabilities affect the linkerd2 package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-UJ59341 Security fixes for CVE-2026-27141, CVE-2026-35469, ghsa-hr2v-4r36-88hr, ghsa-pc3f-x583-g7j2 applied in versions: 26.2.1-r0, 26.4.2

Multiple security vulnerabilities affect the linkerd2 package. These issues are resolved in later releases. See references for individual vulnerability details...

CLEANSTART-2026-OX51942 Security fixes for CVE-2026-29181, CVE-2026-33186, CVE-2026-33811, CVE-2026-33814, CVE-2026-35469, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, ghsa-hr2v-4r36-88hr, ghsa-p77j-4mvh-x3m3, ghsa-pc3f-x583-g7j2 applied in versions: 26.1.4-r0, 26.1.4-r1

Multiple security vulnerabilities affect the linkerd2 package. These issues are resolved in later releases. See references for individual vulnerability details...

GHSA-82J2-J2CH-GFR8 vulnerabilities

Vulnerabilities for packages: rye, lakekeeper, linkerd2-proxy, sqlx, parseable, zellij, shadowsocks-rust, ztunnel-fips, pixi, berg, rustup, linkerd2, komodo, samply, ntpd-rs, nushell, kdash, mise, garage, xh, zizmor, linkerd2-cni-plugin, linkerd-network-validator, buck2, lychee, qdrant, atuin,...

CVE-2026-35469 vulnerabilities

Vulnerabilities for packages: headlamp, zarf, dynamic-localpv-provisioner, argocd-image-updater, redis-operator, kwok, sonobuoy, juicefs-csi-driver, argo-rollouts, consul-k8s, skaffold, kubernetes, cilium, kiali, kubernetes-dashboard-api, k8sgpt-operator, argo-workflows, rancher-agent,...

GHSA-CQ8V-F236-94QC vulnerabilities

Vulnerabilities for packages: xh, shadowsocks-rust, nushell, mountpoint-s3, fish, berg, netavark, sqlx, samply, zellij, zola, kdash, starship, ntpd-rs, buck2, yazi, just, cargo-audit, pixi, linkerd2-proxy, yara-x, hurl, zizmor, sccache, pgcat, parseable, linkerd2, rustup, rye, uutils,...

GHSA-CQ8V-F236-94QC vulnerabilities

Vulnerabilities for packages: rye, watchexec, sdp-k8s-injector, ruff, linkerd2-proxy, sqlx, parseable, valkey-ldap, zellij, shadowsocks-rust, pixi, berg, rustup, linkerd2, rav1e, komodo, samply, ntpd-rs, nushell, kdash, mise, virtiofsd, efs-utils, garage, yazi, mdbook, xh, netavark, zizmor, uutil...

GHSA-GJVH-7JH8-7XHM vulnerabilities

Vulnerabilities for packages: gosu, pguser, pulumi-language-yaml, k8ssandra-operator, contour, kubernetes-csi-driver-hostpath, neuvector-dbgen, goreleaser, terraform-provider-azapi-fips, nri-haproxy, cadvisor, docker-cli-buildx-fips, aws-sigv4-proxy-fips, kiali-fips, filebrowser,...

GHSA-5W89-2C2X-6X66 vulnerabilities

Vulnerabilities for packages: k8ssandra-operator, contour, kubernetes-csi-driver-hostpath, nri-haproxy, kyverno-policy-reporter-plugins-kyverno, nova-fips, kubescape-http-request-fips, crossplane-provider-aws-acm, kubeflow-katib, gitaly, victorialogs-fips, paranoia, manifest-tool, chisel,...

CVE-2026-32283 vulnerabilities

Vulnerabilities for packages: gosu, pguser, pulumi-language-yaml, k8ssandra-operator, contour, neuvector-dbgen, goreleaser, terraform-provider-azapi-fips, nri-haproxy, cadvisor, docker-cli-buildx-fips, aws-sigv4-proxy-fips, kiali-fips, filebrowser, cert-manager-csi-driver-fips, nri-couchbase-fips...

GHSA-9F94-5G5W-GF6R vulnerabilities

Vulnerabilities for packages: linkerd2-proxy, parseable, rustls-ffi, zellij, pixi, rustup, linkerd2, komodo, ntpd-rs, nushell, mise, efs-utils, garage, zizmor, deno, linkerd2-cni-plugin, linkerd-network-validator, buck2, lychee, qdrant, wasmcloud, py3-xet-core, zed, linkerd-extension-init,...

GHSA-394X-VWMW-CRM3 vulnerabilities

Vulnerabilities for packages: linkerd2-proxy, parseable, rustls-ffi, pixi, rustup, linkerd2, komodo, ntpd-rs, nushell, mise, efs-utils, garage, zizmor, deno, linkerd2-cni-plugin, linkerd-network-validator, buck2, lychee, qdrant, wasmcloud, py3-xet-core, zed, linkerd-extension-init, cargo-audit,...

CVE-2026-25541 vulnerabilities

Vulnerabilities for packages: xh, shadowsocks-rust, linkerd-await, nushell, geckodriver, mountpoint-s3, berg, netavark, sqlx, samply, zellij, zola, kdash, ntpd-rs, buck2, yazi, pixi, cargo-audit, linkerd2-proxy, linkerd-extension-init, wizer, zizmor, sccache, pgcat, topgrade, parseable, linkerd2,...

GHSA-434X-W66G-QW3R vulnerabilities

Vulnerabilities for packages: xh, shadowsocks-rust, linkerd-await, nushell, geckodriver, mountpoint-s3, berg, netavark, sqlx, samply, zellij, zola, kdash, ntpd-rs, buck2, yazi, pixi, cargo-audit, linkerd2-proxy, linkerd-extension-init, wizer, zizmor, sccache, pgcat, topgrade, parseable, linkerd2,...

CVE-2025-55199 vulnerabilities

Vulnerabilities for packages: helm-mapkubeapis, headlamp, zarf, helm-push, kots, cert-manager-cmctl, nova, cluster-api-helm-controller, consul-k8s, helm-set-status, cerbos, zot, envoy-gateway, tw, flux-source-controller, k8ssandra-client, kube-arangodb, harbor, eksctl, rancher-fleet, teleport,...

GHSA-F9F8-9PMF-XV68 vulnerabilities

Vulnerabilities for packages: helm-mapkubeapis, headlamp, zarf, helm-push, kots, cert-manager-cmctl, nova, cluster-api-helm-controller, consul-k8s, helm-set-status, cerbos, zot, envoy-gateway, flux-source-controller, k8ssandra-client, kube-arangodb, harbor, eksctl, rancher-fleet, teleport,...

CVE-2025-55199 vulnerabilities

Vulnerabilities for packages: headlamp, cilium-cli, istio, cluster-api-helm-controller, kube-arangodb-fips, trivy-operator-fips, pluto-fips, pluto, kargo, flux-source-controller, cert-manager-fips, tw, flux-fips, chartmuseum, harbor-fips, linkerd2-fips, helm-operator, cert-manager-cmctl, helm-pus...

GHSA-9H84-QMV7-982P vulnerabilities

Vulnerabilities for packages: headlamp, cilium-cli, istio, cluster-api-helm-controller, kube-arangodb-fips, trivy-operator-fips, pluto-fips, pluto, kargo, flux-source-controller, cert-manager-fips, tw, flux-fips, chartmuseum, harbor-fips, linkerd2-fips, helm-operator, cert-manager-cmctl, helm-pus...