/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-28vp-cgpq-5qhq	CVE-2026-32281	Unknown	dkron-executor-grpc	Affected
CGA-cg6p-54m8-9wg3	CVE-2026-32280	Unknown	dkron-executor-grpc	Affected
CGA-5ccv-pp44-79gr	CVE-2026-27140	Unknown	dkron-executor-grpc	Under investigation
CGA-6wcv-cj6j-cv25	CVE-2026-32289	Unknown	buf	Not affected
CGA-4r98-mv69-5p6m	CVE-2026-32288	Unknown	buf	Affected
CGA-mqc5-589v-wrq7	CVE-2026-32283	Unknown	buf	Affected
CGA-424p-7q82-379r	CVE-2026-32282	Unknown	buf	Not affected
CGA-4f5r-6q8v-38wm	CVE-2026-32281	Unknown	buf	Affected
CGA-fjc2-x389-wx7h	CVE-2026-32280	Unknown	buf	Affected
CGA-mx9p-9vqq-26qw	CVE-2026-27140	Unknown	buf	Under investigation
CGA-wjc9-f287-wp7j	CVE-2026-4660	Unknown	grype-fips	Fixed
CGA-wvmv-pqw3-cjrv	CVE-2026-32289	Unknown	cluster-api-1.11-kubeadm-bootstrap-controller	Fixed
CGA-xcv6-x25w-v5v6	CVE-2026-32288	Unknown	cluster-api-1.11-kubeadm-bootstrap-controller	Not affected
CGA-894g-hqc4-xgg7	CVE-2026-32283	Unknown	cluster-api-1.11-kubeadm-bootstrap-controller	Fixed
CGA-q25v-f9wr-xcj5	CVE-2026-32282	Unknown	cluster-api-1.11-kubeadm-bootstrap-controller	Not affected
CGA-x7wr-696c-9wq5	CVE-2026-32281	Unknown	cluster-api-1.11-kubeadm-bootstrap-controller	Fixed

557,007 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company