/

Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-xcm8-37m8-5fm3	CVE-2026-34040	Unknown	prometheus-fips-3.8	Fix not planned
CGA-h2cx-3vm6-h78w	CVE-2026-33997	Unknown	prometheus-fips-3.8	Fix not planned
CGA-pc3w-6vr4-5wf5	CVE-2026-34040	Unknown	kubevela-vela-core-fips	Under investigation
CGA-v27q-rg2x-r2mx	CVE-2026-33997	Unknown	kubevela-vela-core-fips	Under investigation
CGA-pw7w-hqg3-7gjm	CVE-2026-34040	Unknown	goreleaser	Fixed
CGA-w8m6-jxr7-w94j	CVE-2026-33997	Unknown	goreleaser	Fixed
CGA-vj4p-j6rc-frg6	CVE-2026-34040	Unknown	gitness	Under investigation
CGA-cjpw-qg66-4mqm	CVE-2026-33997	Unknown	gitness	Under investigation
CGA-hhh4-4xcp-fm25	CVE-2026-34040	Unknown	vault-1.21	Under investigation
CGA-j3fc-j74j-6xfv	CVE-2025-71074	Unknown	linux-qemu-6.18-bootc-boot-installed	Under investigation
CGA-jfxp-w43r-f25q	CVE-2023-6240	Medium	linux-qemu-6.18-bootc-boot-installed	Under investigation
CGA-c323-c5wp-hf3r	CVE-2026-33997	Unknown	vault-1.21	Under investigation
CGA-c396-8h2h-wjcf	CVE-2022-4543	Medium	linux-qemu-6.18-bootc-boot-installed	Under investigation
CGA-jcvw-cf4w-ghcm	CVE-2026-34040	Unknown	teleport-18.6	Under investigation
CGA-frcm-fcm6-ghgf	CVE-2026-33997	Unknown	teleport-18.6	Under investigation
CGA-phc2-rcmw-52v2	CVE-2026-34040	Unknown	falcoctl	Under investigation

494,628 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company