/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-v4h9-w382-w69r	CVE-2026-34480	Unknown	strimzi-kafka-operator-kafka-thirdparty-libs	Under investigation
CGA-vv6r-6f26-3pq4	CVE-2026-33810	Unknown	gh	Fixed
CGA-wghx-9hcm-h9wx	CVE-2026-32289	Unknown	gh	Fixed
CGA-9f98-9x6x-f58g	CVE-2026-32288	Unknown	gh	Fixed
CGA-3rff-hr2v-79m6	CVE-2026-32283	Unknown	gh	Fixed
CGA-66qp-4v6j-68mm	CVE-2026-32281	Unknown	gh	Fixed
CGA-xgj3-9vfw-8qrp	CVE-2026-32280	Unknown	gh	Fixed
CGA-ffh5-vrf3-wcxc	CVE-2026-27140	Unknown	gh	Fixed
CGA-j752-xhvf-j2x3	CVE-2026-34480	Unknown	elasticsearch-9.2-iamguarded	Under investigation
CGA-pcr7-gcpq-cg9h	CVE-2026-34480	Unknown	elasticsearch-9.2-iamguarded	Under investigation
CGA-wgg8-2f67-2xgq	CVE-2026-34480	Unknown	geoserver-2.27-community	Under investigation
CGA-fmwv-2378-fhhh	CVE-2026-39304	Unknown	geoserver-2.27-community	Under investigation
CGA-2m6q-62hh-w4gx	CVE-2026-39304	Unknown	geoserver-2.27-community	Under investigation
CGA-g7r9-qcq4-9wmj	CVE-2026-39304	Unknown	geoserver-2.27-community	Under investigation
CGA-f85w-f47w-jhv2	CVE-2026-40190	Unknown	langfuse-fips-3-worker	Fixed
CGA-p6w4-647j-q453	CVE-2026-40190	Unknown	langfuse-fips-3-worker	Fixed

561,149 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company