CLEANSTART-2026-IY78242

See a problem?

Import Source

https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-IY78242.json

JSON Data

https://api.osv.dev/v1/vulns/CLEANSTART-2026-IY78242

Upstream

CVE-2025-61729

CVE-2025-61732

CVE-2025-68121

CVE-2026-25679

CVE-2026-27139

CVE-2026-27142

ghsa-273p-m2cw-6833

ghsa-4c4x-jm2x-pf9j

ghsa-4qg8-fj49-pxjh

ghsa-59jp-pj84-45mr

ghsa-72c7-4g63-hpw5

ghsa-846p-jg2w-w324

ghsa-9h8m-3fm2-qjrq

ghsa-f6x5-jh6r-wrfv

ghsa-f83f-xpx7-ffpw

ghsa-fcv2-xgw5-pqxf

ghsa-fphv-w9fq-2525

ghsa-fw7p-63qq-7hpr

ghsa-j5w8-q4qc-rx2x

ghsa-jqc5-w2xx-5vq4

ghsa-p436-gjf2-799p

ghsa-whqx-f9j3-ch6m

Published

2026-04-01T09:44:29.089231Z

Modified

2026-04-01T18:48:51.731386Z

Summary

Security fixes for CVE-2025-61729, CVE-2025-61732, CVE-2025-68121, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, ghsa-273p-m2cw-6833, ghsa-4c4x-jm2x-pf9j, ghsa-4qg8-fj49-pxjh, ghsa-59jp-pj84-45mr, ghsa-72c7-4g63-hpw5, ghsa-846p-jg2w-w324, ghsa-9h8m-3fm2-qjrq, ghsa-f6x5-jh6r-wrfv, ghsa-f83f-xpx7-ffpw, ghsa-fcv2-xgw5-pqxf, ghsa-fphv-w9fq-2525, ghsa-fw7p-63qq-7hpr, ghsa-j5w8-q4qc-rx2x, ghsa-jqc5-w2xx-5vq4, ghsa-p436-gjf2-799p, ghsa-whqx-f9j3-ch6m applied in versions: 0.26.0-r0, 0.26.0-r1, 0.26.0-r2, 0.26.0-r3, 0.26.0-r4

Details

Multiple security vulnerabilities affect the tekton-chains-fips package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / tekton-chains-fips

Package

Name: tekton-chains-fips

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.26.0-r4

Database specific

source

"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-IY78242.json"