Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-cgqq-3fj5-4m95	CVE-2024-38819	High	org.springframework:spring-messaging	Patched
CGA-89gr-ff9w-vj83	CVE-2025-41249	High	org.springframework:spring-messaging	Patched
CGA-3c63-hhhp-vc57	CVE-2025-41249	High	org.springframework:spring-tx	Patched
CGA-234j-mcc7-5w88	CVE-2026-22737	Unknown	org.springframework:spring-tx	Patched
CGA-99jv-vx9g-xvqf	CVE-2024-38816	High	org.springframework:spring-tx	Patched
CGA-cmhj-3rhj-9gwg	CVE-2024-38819	High	org.springframework:spring-tx	Patched
CGA-8fg9-xx8g-jqjw	CVE-2025-41249	High	org.springframework:spring-oxm	Patched
CGA-w2qv-79wx-r3v4	CVE-2026-22737	Unknown	org.springframework:spring-oxm	Patched
CGA-q3wh-8j52-74fr	CVE-2024-38816	High	org.springframework:spring-oxm	Patched
CGA-8j3f-f67q-7fp9	CVE-2024-38819	High	org.springframework:spring-oxm	Patched
CGA-h9x4-8v39-j75q	CVE-2025-41249	High	org.springframework:spring-instrument	Patched
CGA-vm6c-3cqw-88vv	CVE-2026-22737	Unknown	org.springframework:spring-instrument	Patched
CGA-pcwv-cq6r-5vx2	CVE-2024-38816	High	org.springframework:spring-instrument	Patched
CGA-r6g6-9ph7-xwcc	CVE-2024-38819	High	org.springframework:spring-instrument	Patched
CGA-h25w-cvf2-5rgq	CVE-2024-38816	High	org.springframework:spring-websocket	Patched
CGA-px7w-pcr7-j846	CVE-2024-38819	High	org.springframework:spring-websocket	Patched

584,530 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company