CLEANSTART-2026-MK10646

See a problem?

Import Source

https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-MK10646.json

JSON Data

https://api.osv.dev/v1/vulns/CLEANSTART-2026-MK10646

Upstream

CVE-2025-61729

CVE-2026-25679

CVE-2026-25934

CVE-2026-27139

CVE-2026-27142

ghsa-2464-8j7c-4cjm

ghsa-2x5j-vhc8-9cwm

ghsa-37cx-329c-33x3

ghsa-9h8m-3fm2-qjrq

ghsa-fv92-fjc5-jj9h

ghsa-fw7p-63qq-7hpr

ghsa-p77j-4mvh-x3m3

ghsa-q9hv-hpm4-hj6x

Published

2026-04-01T09:24:40.606937Z

Modified

2026-04-01T18:48:58.364457Z

Summary

Security fixes for CVE-2025-61729, CVE-2026-25679, CVE-2026-25934, CVE-2026-27139, CVE-2026-27142, ghsa-2464-8j7c-4cjm, ghsa-2x5j-vhc8-9cwm, ghsa-37cx-329c-33x3, ghsa-9h8m-3fm2-qjrq, ghsa-fv92-fjc5-jj9h, ghsa-fw7p-63qq-7hpr, ghsa-p77j-4mvh-x3m3, ghsa-q9hv-hpm4-hj6x applied in versions: 3.6.16-r0, 3.7.4-r0, 3.7.9-r0, 3.7.9-r1

Details

Multiple security vulnerabilities affect the argo-workflows package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / argo-workflows

Package

Name: argo-workflows

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.7.9-r1

Database specific

source

"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-MK10646.json"