32 matches found
CLEANSTART-2026-SE34232 Security fixes for CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-61732, CVE-2025-68119, CVE-2025-68121, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-33811, CVE-2026-33814, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-40179, CVE-2026-42499, CVE-2026-42501, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x, ghsa-p436-gjf2-799p applied in versions: 7.1.1-r10, 7.1.1-r7, 7.1.1-r8, 7.1.1-r9
Multiple security vulnerabilities affect the minio-operator-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-QO20135 When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint
Multiple security vulnerabilities affect the minio-operator-fips package. When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. See references for individual...
CVE-2026-40179 vulnerabilities
Vulnerabilities for packages: cloud-sql-proxy, loki, loki-fips, istio-fips, elastic-agent-fips, agentbeat, beats-fips, certificate-transparency-fips, karma-fips, node-problem-detector-fips, node-problem-detector, prometheus-pushgateway, datadog-agent, keda, minio-object-browser,...
GHSA-VFFH-X6R8-XX99 vulnerabilities
Vulnerabilities for packages: cloud-sql-proxy, loki, loki-fips, istio-fips, elastic-agent-fips, agentbeat, beats-fips, certificate-transparency-fips, karma-fips, node-problem-detector-fips, node-problem-detector, prometheus-pushgateway, datadog-agent, keda, minio-object-browser,...
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: gostatsd, helm-set-status, git-sync, smarter-device-manager, knative-operator, cluster-proportional-autoscaler, cloud-sql-proxy, kubernetes-csi-external-snapshotter, prometheus-blackbox-exporter, kbld, prometheus-adapter, secrets-store-csi-driver-provider-aws, extism...
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: gostatsd, helm-set-status, git-sync, knative-operator, cluster-proportional-autoscaler, cloud-sql-proxy, kubernetes-csi-external-snapshotter, prometheus-blackbox-exporter, kbld, prometheus-adapter, secrets-store-csi-driver-provider-aws, extism,...
GHSA-JRG3-GFJW-HM96 vulnerabilities
Vulnerabilities for packages: gostatsd, helm-set-status, git-sync, knative-operator, cluster-proportional-autoscaler, cloud-sql-proxy, kubernetes-csi-external-snapshotter, prometheus-blackbox-exporter, kbld, prometheus-adapter, secrets-store-csi-driver-provider-aws, extism,...
CLEANSTART-2026-SQ18258 url
Multiple security vulnerabilities affect the minio-operator-fips package. url. See references for individual vulnerability details...
CLEANSTART-2026-UQ00642 Docker CLI for Windows searches for plugin binaries in C:\\\\ProgramData\\\\Docker\\\\cli-plugins, a directory that does not exist by default
Multiple security vulnerabilities affect the minio-operator-fips package. Docker CLI for Windows searches for plugin binaries in C:\\ProgramData\\Docker\\cli-plugins, a directory that does not exist by default. See references for individual vulnerability details...
CLEANSTART-2026-UF78567 net/url package does not set a limit on the number of query parameters in a query
Multiple security vulnerabilities affect the minio-operator-fips package. The net/url package does not set a limit on the number of query parameters in a query. See references for individual vulnerability details...
CLEANSTART-2026-ST75560 During the TLS 1
Multiple security vulnerabilities affect the minio-operator-fips package. During the TLS 1. See references for individual vulnerability details...
CLEANSTART-2026-OT38160 url
Multiple security vulnerabilities affect the minio-operator-fips package. url. See references for individual vulnerability details...
CLEANSTART-2026-RE45064 Security fixes for ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 5.0.18-r7
Multiple security vulnerabilities affect the minio-operator-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-KW35511 Security fixes for CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-68121, CVE-2026-24515, CVE-2026-25210, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 5.0.18-r6, 5.0.18-r7
Multiple security vulnerabilities affect the minio-operator-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-TF98824 Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61726, CVE-2025-61727, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2025-61732, CVE-2025-68119, CVE-2025-68121, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x, ghsa-p436-gjf2-799p applied in versions: 7.1.1-r0, 7.1.1-r1, 7.1.1-r3
Multiple security vulnerabilities affect the minio-operator package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-YN08405 Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 7.1.1-r7
Multiple security vulnerabilities affect the minio-operator-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-GQ48460 Cancelling a query (e
Security vulnerability affects the minio-operator-fips package. Cancelling a query e...
GHSA-7C64-F9JR-V9H2 vulnerabilities
Vulnerabilities for packages: k8s-metacollector-fips, crossplane-provider-kubernetes-fips, nri-postgresql, opentofu, go-discover, kserve-rest-proxy, kubernetes-replicator-fips, kuberay-operator-fips, kubernetes-csi-livenessprobe, prometheus-statsd-exporter-fips, harbor-scanner-trivy-fips,...
EUVD-2025-12223
Malicious code in bioql PyPI...
Token Leakage
github.com/minio/operator is vulnerable to Token Leakage. The vulnerability is due to improper audience scoping of the defaulting of spec.audiences to the Kubernetes apiserver without proper restrictions, allowing tokens to be replayed to other internal systems...