/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-hm5g-72qp-8cx8	CVE-2025-58190	Medium	metallb-controller	Fixed
CGA-xrhg-7c8j-h3x2	CVE-2025-47911	Medium	metallb-controller	Fixed
CGA-g34r-8xfw-hwr8	CVE-2025-58190	Medium	redis-operator	Not affected
CGA-jmxh-w98r-3xxc	CVE-2025-47911	Medium	redis-operator	Not affected
CGA-hqpc-p4g8-mv3x	CVE-2025-14525	Unknown	docker-machine-driver-harvester	Under investigation
CGA-jfq7-pfw5-w2f5	CVE-2025-58190	Medium	docker-machine-driver-harvester	Not affected
CGA-qqv8-496f-7xcf	CVE-2025-47911	Medium	docker-machine-driver-harvester	Not affected
CGA-pvj9-f9gx-7vqf	CVE-2025-58190	Medium	metallb-frr	Fixed
CGA-jq68-24g4-4rw3	CVE-2025-47911	Medium	metallb-frr	Fixed
CGA-367f-q22v-ccpc	CVE-2025-58190	Medium	timoni	Not affected
CGA-mcv2-7r9p-382j	CVE-2025-47911	Medium	timoni	Not affected
CGA-qqqw-wf8j-446r	CVE-2026-25934	Medium	timoni	Fixed
CGA-cq99-pvm7-xxwm	CVE-2026-25934	Medium	gitsign	Fixed
CGA-wmhq-8cgv-354v	CVE-2026-25934	Medium	gitsign	Fixed
CGA-fgpc-prpr-ggvf	CVE-2026-25934	Medium	rancher-fleet-cli	Fixed
CGA-2294-98rr-8fpj	CVE-2025-58190	Medium	jitsucom-bulker-ingest	Not affected

225,835 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company