OSV - Open Source Vulnerabilities

RHSA-2026:8325

Red Hat:rhel_e4s:9.0::appstream/buildah
Red Hat:rhel_e4s:9.0::appstream/buildah-debuginfo
Red Hat:rhel_e4s:9.0::appstream/buildah-debugsource
Red Hat:rhel_e4s:9.0::appstream/buildah-tests
Red Hat:rhel_e4s:9.0::appstream/buildah-tests-debuginfo
... 20 more

Red Hat Security Advisory: buildah, crun, podman, runc, and skopeo security update

16 Apr

Fix available
Severity - 8.2 (High)

CLEANSTART-2026-BH97849

CleanStart/argo-cd

gRPC-Go is the Go language implementation of gRPC

16 Apr

Fix available
Severity - 9.8 (Critical)

CLEANSTART-2026-JT73156

CleanStart/prometheus-node-exporter

protojson

11 Apr

Fix available
Severity - 9.8 (Critical)

CLEANSTART-2026-NG75665

CleanStart/kube-state-metrics

During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

10 Apr

Fix available
Severity - 9.8 (Critical)

CLEANSTART-2026-BM53321

CleanStart/kube-state-metrics

attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing

10 Apr

Fix available
Severity - 9.8 (Critical)

CLEANSTART-2026-FU47971

CleanStart/prometheus-node-exporter

protojson

07 Apr

Fix available
Severity - 9.8 (Critical)

RHSA-2026:4533

Red Hat:rhel_e4s:9.2::appstream/podman
Red Hat:rhel_e4s:9.2::appstream/podman-debuginfo
Red Hat:rhel_e4s:9.2::appstream/podman-debugsource
Red Hat:rhel_e4s:9.2::appstream/podman-docker
Red Hat:rhel_e4s:9.2::appstream/podman-gvproxy
... 6 more

Red Hat Security Advisory: podman security update

04 Apr

Fix available
Severity - 8.2 (High)

RHSA-2026:2071

Red Hat:openshift:4.18::el8/cri-o
Red Hat:openshift:4.18::el8/cri-o-debuginfo
Red Hat:openshift:4.18::el8/cri-o-debugsource
Red Hat:openshift:4.18::el9/cri-o
Red Hat:openshift:4.18::el9/cri-o-debuginfo
... 1 more

Red Hat Security Advisory: OpenShift Container Platform 4.18.33 packages and security update

04 Apr

Fix available
Severity - 7.5 (High)

RHSA-2026:1838

Red Hat:enterprise_linux:10.1/image-builder
Red Hat:enterprise_linux:10.1/image-builder-debuginfo
Red Hat:enterprise_linux:10.1/image-builder-debugsource

Red Hat Security Advisory: image-builder security update

04 Apr

Fix available
Severity - 7.5 (High)

RHSA-2026:0226

Red Hat:rhel_eus:9.4::appstream/osbuild-composer
Red Hat:rhel_eus:9.4::appstream/osbuild-composer-core
Red Hat:rhel_eus:9.4::appstream/osbuild-composer-core-debuginfo
Red Hat:rhel_eus:9.4::appstream/osbuild-composer-debuginfo
Red Hat:rhel_eus:9.4::appstream/osbuild-composer-debugsource
... 3 more

Red Hat Security Advisory: osbuild-composer security update

04 Apr

Fix available
Severity - 7.5 (High)

RHSA-2025:22030

Red Hat:rhel_eus:9.6::appstream/podman
Red Hat:rhel_eus:9.6::appstream/podman-debuginfo
Red Hat:rhel_eus:9.6::appstream/podman-debugsource
Red Hat:rhel_eus:9.6::appstream/podman-docker
Red Hat:rhel_eus:9.6::appstream/podman-plugins
... 5 more

Red Hat Security Advisory: podman security update

04 Apr

Fix available
Severity - 8.2 (High)

RHSA-2026:5876

Red Hat:openshift:4.19::el9/runc
Red Hat:openshift:4.19::el9/runc-debuginfo
Red Hat:openshift:4.19::el9/runc-debugsource
Red Hat:openshift:4.19::el9/skopeo
Red Hat:openshift:4.19::el9/skopeo-debuginfo
... 2 more

Red Hat Security Advisory: OpenShift Container Platform 4.19.27 packages and security update

02 Apr

Fix available
Severity - 7.5 (High)

CLEANSTART-2026-QF85840

CleanStart/argo-cd-fips

Security fixes for CVE-2025-55190, CVE-2025-55191, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-59537, CVE-2025-59538, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61732, CVE-2025-68121, CVE-2026-1229, CVE-2026-25934, ghsa-2v5j-vhc3-9cwm, ghsa-2vgg-9h3w-qbr4, ghsa-2x5j-vhc8-9cwm, ghsa-2xsj-vh29-9cwm, ghsa-3wgm-2mw2-vh5m, ghsa-4x4m-3c2p-qppc, ghsa-6v2p-p543-phr9, ghsa-92cp-5422-2m47, ghsa-93mq-9ffx-83m2, ghsa-f6x5-jh6r-wrfv, ghsa-hj2p-8wj8-pfq4, ghsa-j5w8-q4qc-rx2x, ghsa-mh63-6h87-95cp, ghsa-mw99-9chc-xw7r, ghsa-r6j8-c6r2-37rr applied in versions: 2.13.9-r0, 2.14.20-r0, 3.0.16-r0, 3.0.19-r0, 3.0.22-r0, 3.0.22-r1, 3.1.4-r0, 3.1.8.-r0, 3.1.9-r4

01 Apr

Fix available

RHSA-2026:5866

Red Hat:openshift:4.17::el8/containernetworking-plugins
Red Hat:openshift:4.17::el8/containernetworking-plugins-debuginfo
Red Hat:openshift:4.17::el8/containernetworking-plugins-debugsource
Red Hat:openshift:4.17::el8/runc
Red Hat:openshift:4.17::el8/runc-debuginfo
... 10 more

Red Hat Security Advisory: OpenShift Container Platform 4.17.52 packages and security update

01 Apr

Fix available
Severity - 7.5 (High)

CLEANSTART-2026-PF41398

CleanStart/helm-fips

Security fixes for CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61727, CVE-2025-61729, CVE-2025-61732, CVE-2025-68121 applied in versions: 3.19.0-r0, 3.19.5-r0, 4.0.1-r0

01 Apr

Fix available

CLEANSTART-2026-FF20499

CleanStart/argo-cd-fips

Security fixes for CVE-2025-55190, CVE-2025-55191, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-59537, CVE-2025-59538, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2026-25934, ghsa-2v5j-vhc3-9cwm, ghsa-2vgg-9h3w-qbr4, ghsa-2xsj-vh29-9cwm, ghsa-37cx-329c-33x3, ghsa-3wgm-2mw2-vh5m, ghsa-4x4m-3c2p-qppc, ghsa-6v2p-p543-phr9, ghsa-92cp-5422-2m47, ghsa-93mq-9ffx-83m2, ghsa-f6x5-jh6r-wrfv, ghsa-hj2p-8wj8-pfq4, ghsa-j5w8-q4qc-rx2x, ghsa-mh63-6h87-95cp, ghsa-mw99-9chc-xw7r applied in versions: 2.13.9-r0, 2.14.20-r0, 3.0.16-r0, 3.0.19-r0, 3.1.4-r0, 3.1.8.-r0, 3.1.9-r4, 3.2.7-r0

01 Apr

Fix available