OSV - Open Source Vulnerabilities

CLEANSTART-2026-BM78291

CleanStart/dex

Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU

4 days ago

Fix available
Severity - 9.8 (Critical)

CLEANSTART-2026-SQ76279

CleanStart/dex

Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU

4 days ago

Fix available
Severity - 9.8 (Critical)

CLEANSTART-2026-PD78752

CleanStart/grafana-alloy

Security fixes for CVE-2025-11579, CVE-2026-21726, CVE-2026-24051, CVE-2026-25934, CVE-2026-26958, CVE-2026-32281, CVE-2026-32283, CVE-2026-32287, CVE-2026-33186, CVE-2026-33762, CVE-2026-33810, CVE-2026-33997, CVE-2026-34040, CVE-2026-34165, CVE-2026-34986, CVE-2026-39821, CVE-2026-39882, CVE-2026-39883, CVE-2026-41506, CVE-2026-41602, CVE-2026-45022, ghsa-37cx-329c-33x3, ghsa-3xc5-wrhm-f963, ghsa-497x-rrr9-68jp, ghsa-6g7g-w4f8-9c9x, ghsa-fw7p-63qq-7hpr, ghsa-w5pp-99ch-qj29, ghsa-w8rr-5gcm-pp58, ghsa-wf45-q9ch-q8gh, ghsa-xmrv-pmrh-hhx2 applied in versions: 1.13.2-r0, 1.14.1-r0, 1.14.2-r0, 1.14.2-r1, 1.15.1-r1, 1.16.0-r0, 1.16.1-r0

6 days ago

Fix available

CLEANSTART-2026-RE02723

CleanStart/kubernetes-csi-external-provisioner-fips

Security fixes for CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-68121, CVE-2026-24051, CVE-2026-25679, CVE-2026-25680, CVE-2026-25681, CVE-2026-27136, CVE-2026-27139, CVE-2026-27142, CVE-2026-32281, CVE-2026-32283, CVE-2026-33186, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39821, CVE-2026-39823, CVE-2026-39824, CVE-2026-39825, CVE-2026-39826, CVE-2026-39827, CVE-2026-39828, CVE-2026-39829, CVE-2026-39830, CVE-2026-39831, CVE-2026-39832, CVE-2026-39833, CVE-2026-39834, CVE-2026-39835, CVE-2026-39836, CVE-2026-39883, CVE-2026-42499, CVE-2026-42501, CVE-2026-42502, CVE-2026-42506, CVE-2026-42508, CVE-2026-46595, CVE-2026-46597, CVE-2026-46598, ghsa-9h8m-3fm2-qjrq, ghsa-p77j-4mvh-x3m3 applied in versions: 6.1.0-r0, 6.1.0-r1, 6.1.0-r2, 6.1.0-r3, 6.1.0-r4

6 days ago

Fix available

CLEANSTART-2026-RQ86436

CleanStart/kubernetes-csi-external-snapshotter-fips

Security fixes for CVE-2026-25679, CVE-2026-25680, CVE-2026-25681, CVE-2026-27136, CVE-2026-27139, CVE-2026-27140, CVE-2026-27142, CVE-2026-27143, CVE-2026-32280, CVE-2026-32281, CVE-2026-32283, CVE-2026-32289, CVE-2026-33186, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39821, CVE-2026-39823, CVE-2026-39824, CVE-2026-39825, CVE-2026-39826, CVE-2026-39827, CVE-2026-39828, CVE-2026-39829, CVE-2026-39830, CVE-2026-39831, CVE-2026-39832, CVE-2026-39833, CVE-2026-39834, CVE-2026-39835, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501, CVE-2026-42502, CVE-2026-42506, CVE-2026-42508, CVE-2026-46595, CVE-2026-46597, CVE-2026-46598, ghsa-f6x5-jh6r-wrfv, ghsa-hfvc-g4fc-pqhx, ghsa-j5w8-q4qc-rx2x, ghsa-p77j-4mvh-x3m3 applied in versions: 8.4.0-r0, 8.5.0-r0, 8.5.0-r1, 8.5.0-r2, 8.5.0-r3

6 days ago

Fix available

CLEANSTART-2026-PQ10269

CleanStart/nginx-prometheus-exporter

Security fixes for CVE-2025-61726, CVE-2025-61727, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2025-61731, CVE-2025-61732, CVE-2025-68121, CVE-2026-25679, CVE-2026-27139, CVE-2026-27140, CVE-2026-27142, CVE-2026-27143, CVE-2026-27144, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501 applied in versions: 1.5.1-r0, 1.5.1-r1, 1.5.1-r2

6 days ago

Fix available

CLEANSTART-2026-PU75130

CleanStart/rabbitmq-cluster-operator

Security fixes for CVE-2026-27140, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-35469, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501, ghsa-pc3f-x583-g7j2 applied in versions: 2.19.2-r0, 2.19.2-r1, 2.19.2-r2, 2.19.2-r3

6 days ago

Fix available

CLEANSTART-2026-SA78596

CleanStart/kubernetes

Security fixes for CVE-2025-47911, CVE-2025-47912, CVE-2025-58183, CVE-2025-58185, CVE-2025-58186, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61732, CVE-2026-27139, CVE-2026-27140, CVE-2026-27145, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-35469, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42504, CVE-2026-42507, ghsa-pc3f-x583-g7j2 applied in versions: 1.34.1-r0, 1.34.1-r2, 1.34.1-r3, 1.34.1-r4, 1.34.1-r5, 1.34.1-r6

6 days ago

Fix available

RLSA-2026:19135

Rocky Linux:10/opentelemetry-collector

Important: opentelemetry-collector security update

29 May

Fix available
Severity - 9.1 (Critical)

RLSA-2026:19144

Rocky Linux:10/golang-github-openprinting-ipp-usb

Important: golang-github-openprinting-ipp-usb security update

29 May

Fix available
Severity - 8.8 (High)

RLSA-2026:19353

Rocky Linux:9/opentelemetry-collector

Important: opentelemetry-collector security update

28 May

Fix available
Severity - 9.1 (Critical)

RHSA-2026:19721

Red Hat:rhel_eus:9.4::appstream/opentelemetry-collector

Red Hat Security Advisory: opentelemetry-collector security update

21 May

Fix available
Severity - 9.1 (Critical)

RHSA-2026:19719

Red Hat:enterprise_linux_eus:10.0/opentelemetry-collector

Red Hat Security Advisory: opentelemetry-collector security update

21 May

Fix available
Severity - 9.1 (Critical)

RHSA-2026:19720

Red Hat:rhel_eus:9.6::appstream/opentelemetry-collector

Red Hat Security Advisory: opentelemetry-collector security update

21 May

Fix available
Severity - 9.1 (Critical)

CLEANSTART-2026-QL45485

CleanStart/mongodb

Security fixes for CVE-2025-14847, CVE-2025-58181, CVE-2025-61727, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499 applied in versions: 7.0.30-r0, 7.0.30-r1, 7.0.31-r0, 7.0.32-r0, 8.2.1-r1

21 May

Fix available

CLEANSTART-2026-VW96633

CleanStart/mongodb

Security fixes for CVE-2025-14847, CVE-2025-58181, CVE-2025-61727, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499 applied in versions: 8.0.20-r0, 8.0.21-r0, 8.2.1-r1

21 May

Fix available