OSV - Open Source Vulnerabilities

CLEANSTART-2026-HZ73294

CleanStart/kube-fluentd-operator

Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service

3 days ago

Fix available
Severity - 9.8 (Critical)

CLEANSTART-2026-QV50101

CleanStart/kafka_exporter-fips

Security fixes for CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-68121, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, ghsa-8r3f-844c-mc37 applied in versions: 1.6.0-r0

01 Apr

Fix available

CLEANSTART-2026-GM81143

CleanStart/kafka_exporter-fips

Security fixes for CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-68121, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, ghsa-8r3f-844c-mc37 applied in versions: 1.7.0-r0, 1.7.0-r1

01 Apr

Fix available

MINI-c2vf-f2vq-pwp2

MinimOS/docker-25
MinimOS/docker-dind-25
MinimOS/docker-init-25
MinimOS/docker-oci-entrypoint-25
MinimOS/docker-rootless-25
... 3 more

See record for full details

23 Mar

Fix available

MINI-69r3-3cr9-vg9m

MinimOS/docker-dind-fips-25
MinimOS/docker-fips-25
MinimOS/docker-init-fips-25
MinimOS/docker-oci-entrypoint-fips-25
MinimOS/docker-rootless-fips-25
... 3 more

See record for full details

23 Mar

Fix available

CLEANSTART-2026-CQ38405

CleanStart/prometheus-node-exporter-fips

excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate

30 Jan

Fix available
Severity - 9.8 (Critical)

MINI-4g6f-wjmq-v62w

Not specified

See record for full details

10 Dec 2025

No fix available

MINI-xw8f-v5c9-8wm9

MinimOS/kubernetes-event-exporter
MinimOS/kubernetes-event-exporter-advanced-compat

See record for full details

02 Dec 2025

No fix available

MINI-5c89-g44v-83h2

MinimOS/kubernetes-event-exporter-fips

See record for full details

26 Nov 2025

Fix available

MINI-rcg9-fqx2-96cf

Not specified

See record for full details

04 Sep 2025

No fix available

MINI-3xjw-26pc-q8ww

MinimOS/cadvisor
MinimOS/cadvisor-compat

See record for full details

12 Jun 2025

Fix available

MINI-j276-qmjp-pf6g

MinimOS/aws-flb-kinesis
MinimOS/aws-flb-kinesis-compat

See record for full details

12 Jun 2025

Fix available

GHSA-8r3f-844c-mc37

Go/google.golang.org/protobuf
Go/google.golang.org/protobuf/encoding/protojson
Go/google.golang.org/protobuf/internal/encoding/json

Golang protojson.Unmarshal function infinite loop when unmarshaling certain forms of invalid JSON

06 Mar 2024

Fix available
Severity - 6.6 (Medium)

CVE-2024-24786

Not specified

See record for full details

05 Mar 2024

No fix available

GO-2024-2611

Go/google.golang.org/protobuf

Infinite loop in JSON unmarshaling in google.golang.org/protobuf

05 Mar 2024

Fix available