CLEANSTART-2026-FU07345

See a problem?
Import Source
https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-FU07345.json
JSON Data
https://api.osv.dev/v1/vulns/CLEANSTART-2026-FU07345
Upstream
  • CVE-2026-22815
  • CVE-2026-34513
  • CVE-2026-34514
  • CVE-2026-34515
  • CVE-2026-34516
  • CVE-2026-34517
  • CVE-2026-34518
  • CVE-2026-34519
  • CVE-2026-34520
  • CVE-2026-34525
  • CVE-2026-41066
  • CVE-2026-41205
  • CVE-2026-44307
  • CVE-2026-44405
  • CVE-2026-44503
  • CVE-2026-45409
  • ghsa-27jp-wm6q-gp25
  • ghsa-27mf-ghqm-j3j8
  • ghsa-29h4-r29x-hchv
  • ghsa-2g68-c3qc-8985
  • ghsa-2h4p-vjrc-8xpq
  • ghsa-2vrm-gr82-f7m5
  • ghsa-2xpw-w6gg-jr37
  • ghsa-38jv-5279-wg99
  • ghsa-3wq7-rqq7-wx6j
  • ghsa-428g-f7cq-pgp5
  • ghsa-5239-wwwm-4pmq
  • ghsa-54jq-c3m8-4m76
  • ghsa-58pv-8j8x-9vj2
  • ghsa-5rjg-fvgr-3xxf
  • ghsa-63hf-3vf5-4wqf
  • ghsa-63vm-454h-vhhq
  • ghsa-65pc-fj4g-8rjx
  • ghsa-68rp-wp8r-4726
  • ghsa-6jhg-hg63-jvvf
  • ghsa-6mq8-rvhq-8wgg
  • ghsa-752w-5fwx-jx9f
  • ghsa-765j-9r45-w2q2
  • ghsa-78cv-mqj4-43f7
  • ghsa-79v4-65xg-pq4g
  • ghsa-7cx3-6m66-7c5m
  • ghsa-7gcm-g887-7qv7
  • ghsa-7j59-v9qr-6fq9
  • ghsa-847f-9342-265h
  • ghsa-8495-4g3g-x7pr
  • ghsa-87hc-h4r5-73f7
  • ghsa-8qvm-5x2c-j2w7
  • ghsa-8rrh-rw8j-w5fx
  • ghsa-8w49-h785-mj3c
  • ghsa-9548-qrrj-x5pj
  • ghsa-966j-vmvw-g2g9
  • ghsa-9hjg-9r4m-mvj7
  • ghsa-c427-h43c-vf67
  • ghsa-cpwx-vrp4-4pq7
  • ghsa-f9vj-2wh5-fj8j
  • ghsa-fh55-r93g-j68g
  • ghsa-fqwm-6jpj-5wxc
  • ghsa-g84x-mcqj-x9qq
  • ghsa-gc5v-m9x4-r6x2
  • ghsa-gm62-xv2j-4w53
  • ghsa-gmj6-6f8f-6699
  • ghsa-h4gh-qq45-vh27
  • ghsa-hcc4-c3v8-rx92
  • ghsa-hgf8-39gv-g3f2
  • ghsa-hrfv-mqp8-q5rw
  • ghsa-jm66-cg57-jjv5
  • ghsa-jr27-m4p2-rc6r
  • ghsa-m5qp-6w8w-w647
  • ghsa-mf9w-mj56-hr94
  • ghsa-mrfv-m5wm-5w6w
  • ghsa-mwh4-6h8g-pg8w
  • ghsa-p8q5-cvwx-wvwp
  • ghsa-p998-jp59-783m
  • ghsa-pq67-6m6q-mj2v
  • ghsa-q2x7-8rv6-6q7h
  • ghsa-q34m-jh98-gwm2
  • ghsa-qccp-gfcp-xxvc
  • ghsa-qjxf-f2mg-c6mc
  • ghsa-r244-wg5g-6w2r
  • ghsa-r6ph-v2qm-q3c2
  • ghsa-v92g-xgxw-vvmm
  • ghsa-vfmq-68hx-4jfw
  • ghsa-vqfr-h8mv-ghfj
  • ghsa-w2fm-2cpv-w7v5
Published
2026-06-08T12:34:30.162472Z
Modified
2026-06-22T09:45:12.026874345Z
Summary
Security fixes for CVE-2024-12797, CVE-2024-52303, CVE-2024-52304, CVE-2024-56201, CVE-2024-56326, CVE-2025-24023, CVE-2025-27516, CVE-2025-32962, CVE-2025-43859, CVE-2025-4565, CVE-2025-53643, CVE-2025-57804, CVE-2025-58065, CVE-2025-68480, CVE-2025-69223, CVE-2025-69224, CVE-2025-69225, CVE-2025-69226, CVE-2025-69227, CVE-2025-69228, CVE-2025-69229, CVE-2025-69230, CVE-2026-0994, CVE-2026-21226, CVE-2026-22815, CVE-2026-23490, CVE-2026-26007, CVE-2026-27205, CVE-2026-34073, CVE-2026-34513, CVE-2026-34514, CVE-2026-34515, CVE-2026-34516, CVE-2026-34517, CVE-2026-34518, CVE-2026-34519, CVE-2026-34520, CVE-2026-34525, CVE-2026-41066, CVE-2026-41205, CVE-2026-44307, CVE-2026-44405, CVE-2026-44503, CVE-2026-45409, ghsa-27jp-wm6q-gp25, ghsa-27mf-ghqm-j3j8, ghsa-29h4-r29x-hchv, ghsa-2g68-c3qc-8985, ghsa-2h4p-vjrc-8xpq, ghsa-2vrm-gr82-f7m5, ghsa-2xpw-w6gg-jr37, ghsa-38jv-5279-wg99, ghsa-3wq7-rqq7-wx6j, ghsa-428g-f7cq-pgp5, ghsa-5239-wwwm-4pmq, ghsa-54jq-c3m8-4m76, ghsa-58pv-8j8x-9vj2, ghsa-5rjg-fvgr-3xxf, ghsa-63hf-3vf5-4wqf, ghsa-63vm-454h-vhhq, ghsa-65pc-fj4g-8rjx, ghsa-68rp-wp8r-4726, ghsa-6jhg-hg63-jvvf, ghsa-6mq8-rvhq-8wgg, ghsa-752w-5fwx-jx9f, ghsa-765j-9r45-w2q2, ghsa-78cv-mqj4-43f7, ghsa-79v4-65xg-pq4g, ghsa-7cx3-6m66-7c5m, ghsa-7gcm-g887-7qv7, ghsa-7j59-v9qr-6fq9, ghsa-847f-9342-265h, ghsa-8495-4g3g-x7pr, ghsa-87hc-h4r5-73f7, ghsa-8qvm-5x2c-j2w7, ghsa-8rrh-rw8j-w5fx, ghsa-8w49-h785-mj3c, ghsa-9548-qrrj-x5pj, ghsa-966j-vmvw-g2g9, ghsa-9hjg-9r4m-mvj7, ghsa-c427-h43c-vf67, ghsa-cpwx-vrp4-4pq7, ghsa-f9vj-2wh5-fj8j, ghsa-fh55-r93g-j68g, ghsa-fqwm-6jpj-5wxc, ghsa-g84x-mcqj-x9qq, ghsa-gc5v-m9x4-r6x2, ghsa-gm62-xv2j-4w53, ghsa-gmj6-6f8f-6699, ghsa-h4gh-qq45-vh27, ghsa-hcc4-c3v8-rx92, ghsa-hgf8-39gv-g3f2, ghsa-hrfv-mqp8-q5rw, ghsa-jm66-cg57-jjv5, ghsa-jr27-m4p2-rc6r, ghsa-m5qp-6w8w-w647, ghsa-mf9w-mj56-hr94, ghsa-mrfv-m5wm-5w6w, ghsa-mwh4-6h8g-pg8w, ghsa-p8q5-cvwx-wvwp, ghsa-p998-jp59-783m, ghsa-pq67-6m6q-mj2v, ghsa-q2x7-8rv6-6q7h, ghsa-q34m-jh98-gwm2, ghsa-qccp-gfcp-xxvc, ghsa-qjxf-f2mg-c6mc, ghsa-r244-wg5g-6w2r, ghsa-r6ph-v2qm-q3c2, ghsa-v92g-xgxw-vvmm, ghsa-vfmq-68hx-4jfw, ghsa-vqfr-h8mv-ghfj, ghsa-w2fm-2cpv-w7v5 applied in versions: 2.10.3-r0, 2.10.3-r2
Details

Multiple security vulnerabilities affect the airflow-2 package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / airflow-2

Package

Name
airflow-2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.10.3-r2

Database specific

source 
"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-FU07345.json"