steampipe-2.4.4-1.1 on GA media (moderate)

steampipe-2.4.4-1.1 on GA media Announcement ID: openSUSE-SU-2026:10976-1 Rating: moderate Cross-References: CVE-2026-41889 CVSS scores: CVE-2026-41889 SUSE : 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2026-41889 SUSE : 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N...

OPENSUSE-SU-2026:10976-1 steampipe-2.4.4-1.1 on GA media

These are all security issues fixed in the steampipe-2.4.4-1.1 package on the GA media of openSUSE Tumbleweed...

GHSA-M7CR-M3PV-HGRP vulnerabilities

Vulnerabilities for packages: trufflehog, steampipe, pulumi-language-yaml, kots, wolfictl, tfsec, bom, pulumi-language-java, grafana-alloy, argo-cd, gptscript, act, external-secrets-operator, gitaly, nfpm, gitlab-runner, gitsign, kubevela, gitea, src-fingerprint, xeol, skaffold, zot, nuclei,...

GHSA-CRHJ-59GH-8X96 vulnerabilities

Vulnerabilities for packages: trufflehog, steampipe, pulumi-language-yaml, kots, wolfictl, tfsec, bom, pulumi-language-java, grafana-alloy, argo-cd, gptscript, act, external-secrets-operator, gitaly, nfpm, gitlab-runner, gitsign, kubevela, gitea, src-fingerprint, xeol, skaffold, zot, nuclei,...

CVE-2026-45571 vulnerabilities

Vulnerabilities for packages: trufflehog, steampipe, pulumi-language-yaml, kots, wolfictl, tfsec, bom, pulumi-language-java, grafana-alloy, argo-cd, gptscript, act, external-secrets-operator, gitaly, nfpm, gitlab-runner, gitsign, kubevela, gitea, src-fingerprint, xeol, skaffold, zot, nuclei,...

CVE-2026-45570 vulnerabilities

Vulnerabilities for packages: trufflehog, steampipe, pulumi-language-yaml, kots, wolfictl, tfsec, bom, pulumi-language-java, grafana-alloy, argo-cd, gptscript, act, external-secrets-operator, gitaly, nfpm, gitlab-runner, gitsign, kubevela, gitea, src-fingerprint, xeol, skaffold, zot, nuclei,...

GHSA-CRHJ-59GH-8X96 vulnerabilities

Vulnerabilities for packages: cloudbeat, kaniko, cerbos, packer, external-secrets-operator-fips, gitsign, cloudbeat-fips, trivy-fips, apko, chainloop-cli-fips, grype, pulumi-language-java, flux-image-automation-controller, argo-workflows, src-fingerprint-fips, zot, tfsec, grafana-alloy, nuclei,...

CVE-2026-45571 vulnerabilities

Vulnerabilities for packages: cloudbeat, kaniko, cerbos, packer, external-secrets-operator-fips, gitsign, cloudbeat-fips, trivy-fips, apko, chainloop-cli-fips, grype, pulumi-language-java, flux-image-automation-controller, argo-workflows, src-fingerprint-fips, zot, tfsec, grafana-alloy, nuclei,...

GHSA-M7CR-M3PV-HGRP vulnerabilities

Vulnerabilities for packages: cloudbeat, kaniko, cerbos, packer, external-secrets-operator-fips, gitsign, cloudbeat-fips, trivy-fips, apko, chainloop-cli-fips, grype, pulumi-language-java, flux-image-automation-controller, argo-workflows, src-fingerprint-fips, zot, tfsec, grafana-alloy, nuclei,...

GHSA-389R-GV7P-R3RP vulnerabilities

Vulnerabilities for packages: trufflehog, steampipe, pulumi-language-yaml, kots, wolfictl, tfsec, bom, pulumi-language-java, grafana-alloy, argo-cd, argo-workflows, act, external-secrets-operator, gitaly, gptscript, nfpm, gitlab-runner, gitsign, kubevela, gitea, src-fingerprint, xeol, skaffold,...

CVE-2026-45022 vulnerabilities

Vulnerabilities for packages: cloudbeat, kaniko, cerbos, packer, external-secrets-operator-fips, gitsign, cloudbeat-fips, trivy-fips, apko, chainloop-cli-fips, grype, pulumi-language-java, flux-image-automation-controller, argo-workflows, src-fingerprint-fips, zot, tfsec, grafana-alloy, nuclei,...

GHSA-389R-GV7P-R3RP vulnerabilities

Vulnerabilities for packages: cloudbeat, kaniko, cerbos, packer, external-secrets-operator-fips, gitsign, cloudbeat-fips, trivy-fips, apko, chainloop-cli-fips, grype, pulumi-language-java, flux-image-automation-controller, argo-workflows, src-fingerprint-fips, zot, tfsec, grafana-alloy, nuclei,...

CVE-2026-4660 vulnerabilities

Vulnerabilities for packages: tflint, steampipe, task, kots, wolfictl, tfsec, xeol, zot, conftest, zarf, terragrunt, snyk-cli, opentofu, terraform, trivy, kubescape, syft, grype, trivy-operator, k9s...

GHSA-92MM-2PJQ-R785 vulnerabilities

Vulnerabilities for packages: tflint, steampipe, task, kots, wolfictl, tfsec, xeol, zot, conftest, zarf, terragrunt, snyk-cli, opentofu, terraform, trivy, kubescape, syft, grype, trivy-operator, k9s...

OPENSUSE-SU-2026:10509-1 steampipe-2.4.1-1.1 on GA media

These are all security issues fixed in the steampipe-2.4.1-1.1 package on the GA media of openSUSE Tumbleweed...

CVE-2026-32286 vulnerabilities

Vulnerabilities for packages: bento, bento-fips, telegraf, teleport, steampipe...

CVE-2026-32286 vulnerabilities

Vulnerabilities for packages: bento, telegraf, teleport, steampipe...

GHSA-7HFW-R8QC-89V4 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, steampipe, flux-source-controller, flux-operator, polaris, podinfo, flux-image-reflector-controller, pluto, dkron, flux-image-automation-controller, terragrunt, stakater-reloader, flux-notification-controller, grafana-rollout-operator,...

CVE-2026-27138 vulnerabilities

Vulnerabilities for packages: flux-helm-controller, steampipe, flux-source-controller, flux-operator, polaris, podinfo, flux-image-reflector-controller, pluto, dkron, flux-image-automation-controller, terragrunt, stakater-reloader, flux-notification-controller, grafana-rollout-operator,...

GHSA-PH5J-38MG-J6HP vulnerabilities

Vulnerabilities for packages: flux-helm-controller, steampipe, flux-source-controller, flux-operator, polaris, podinfo, flux-image-reflector-controller, pluto, dkron, flux-image-automation-controller, terragrunt, stakater-reloader, flux-notification-controller, grafana-rollout-operator,...