/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-fm7f-8jqq-25mh	CVE-2026-25934	Medium	kyverno-cli-1.16	Fixed
CGA-48mj-c9xp-85jh	CVE-2026-25934	Medium	nfpm	Fixed
CGA-h5p4-f95g-37jf	CVE-2025-58190	Medium	opensearch-k8s-operator	Not affected
CGA-8c8w-q576-2jpj	CVE-2025-47911	Medium	opensearch-k8s-operator	Not affected
CGA-455g-6h68-hw8w	CVE-2026-25765	Medium	kube-fluentd-operator	Under investigation
CGA-hq2v-8rv2-cvv2	CVE-2025-58190	Medium	otel-cli	Fixed
CGA-w8mj-w5cm-2v6p	CVE-2025-47911	Medium	otel-cli	Fixed
CGA-5jc2-6qmp-whj2	CVE-2025-58190	Medium	dive	Fixed
CGA-c4hr-56px-p43x	CVE-2025-47911	Medium	dive	Fixed
CGA-w5gv-wfg2-4945	CVE-2025-58190	Medium	verticadb-operator	Fixed
CGA-xfpr-55hp-65gp	CVE-2025-47911	Medium	verticadb-operator	Fixed
CGA-pqp4-42mh-j88p	CVE-2026-25934	Medium	kyverno-cli-1.16	Fixed
CGA-62xf-7mvf-3cmc	CVE-2026-25934	Medium	flux-2.7	Fixed
CGA-h5jr-wpxx-98gh	CVE-2026-25934	Medium	flux-2.7	Fixed
CGA-7hfq-5h36-5pcm	CVE-2025-58190	Medium	rancher-system-upgrade-controller	Not affected
CGA-8ghm-pghq-xqw8	CVE-2025-47911	Medium	rancher-system-upgrade-controller	Not affected

225,835 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company