/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-fm33-vrjh-2fp7	CVE-2026-3505	Unknown	gradle-stage0	Under investigation
CGA-r6gf-8xf3-j99f	CVE-2026-0636	Unknown	jenkins-2.541	Under investigation
CGA-r722-4rx2-ggfg	CVE-2026-3505	Unknown	jenkins-2.541	Under investigation
CGA-2g3v-768h-pcr3	CVE-2026-0636	Unknown	sonarqube	Under investigation
CGA-2rw7-f2p8-hj7p	CVE-2026-0636	Unknown	logstash-8.18	Fix not planned
CGA-gjp9-jgpq-r2rm	CVE-2026-0636	Unknown	logstash-8.18	Fix not planned
CGA-q6xc-rmf4-679m	CGA-q6xc-rmf4-679m	Unknown	guacone	Under investigation
CGA-r9x3-v434-qjwq	CGA-r9x3-v434-qjwq	Unknown	external-secrets-operator-fips-2.3	Fixed
CGA-52q9-c923-j8hv	CVE-2026-0636	Unknown	wildfly-openjdk-21	Under investigation
CGA-2cfh-jjx8-56r5	CVE-2026-3505	Unknown	wildfly-openjdk-21	Under investigation
CGA-fjhj-jr2v-x2rr	CVE-2026-3505	Unknown	gradle-stage0	Under investigation
CGA-7f89-4vhr-5665	CGA-7f89-4vhr-5665	Unknown	flux-2.5	Fix not planned
CGA-9m82-h7g9-ffmw	CGA-9m82-h7g9-ffmw	Unknown	flux-source-controller-fips	Fixed
CGA-vhhg-6x29-fc55	CGA-vhhg-6x29-fc55	Unknown	tekton-pipelines-resolvers-0.68	Fix not planned
CGA-vqr7-vmf9-vgwx	CGA-vqr7-vmf9-vgwx	Unknown	tfsec	Fixed
CGA-m2gm-vpjg-f2p5	CGA-m2gm-vpjg-f2p5	Unknown	tfsec	Fixed

572,222 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company