Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-q5w3-jp3c-wj6x	CVE-2026-41178	Unknown	coder	Under investigation
CGA-373q-qxqw-5497	CVE-2026-41178	Unknown	grafana-mimir-3.0-mimirtool-3.0	Under investigation
CGA-vvqj-jmw6-c2c5	CVE-2026-41178	Unknown	grafana-12.2	Under investigation
CGA-w23g-ffm3-v2gw	CVE-2026-55170	Unknown	grafana-12.2	Under investigation
CGA-p9fr-2hjx-4f3r	CVE-2026-9697	Unknown	kibana-9.1	Under investigation
CGA-fvfw-g246-vxm7	CVE-2026-9678	Unknown	kibana-9.1	Under investigation
CGA-39pc-v3pc-xhj5	CGA-39pc-v3pc-xhj5	Unknown	kibana-9.1	Under investigation
CGA-8mgj-53q3-8h5c	CVE-2026-2303	Medium	external-secrets-operator-fips-1.2	Under investigation
CGA-mmp3-4p52-h88r	CVE-2026-41178	Unknown	stunnerd	Under investigation
CGA-p64m-gg6w-prxv	CVE-2026-41178	Unknown	opentofu-1.11	Under investigation
CGA-c937-2rm5-p9j6	CVE-2026-41178	Unknown	crossplane-provider-family-gcp-config	Under investigation
CGA-326f-fwm2-73w5	CVE-2026-41178	Unknown	commercial-kyverno-1.14	Pending upstream fix
CGA-vm3x-65j2-hmp3	CVE-2026-41178	Unknown	boring-registry	Under investigation
CGA-6jqw-6744-5pfm	CVE-2026-41178	Unknown	gitlab-operator	Under investigation
CGA-gvj4-6r24-vrm9	CVE-2026-41178	Unknown	dapr-scheduler-1.18	Under investigation
CGA-4cmp-pjxr-37mv	CVE-2026-41178	Unknown	opentofu-1.11	Under investigation

843,641 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company