DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CGA-gpgr-rxg5-qrj3

Package

tekton-pipelines-workingdirinit-1.4

Component

github.com/tektoncd/pipeline

Latest update

Fixed

Fixed version

1.4.0-r19

Aliases

  • CVE-2026-33211
  • GHSA-j5q5-j9gm-2w5c
  • GO-2026-4761

Severity

9.6

Critical

CVSS V3

Eliminate CVEs with Chainguard hardened images

Build, ship, and run secure software with minimal, hardened container images — rebuilt from source daily and guarded under our industry-leading remediation SLA.

Start for free

References

  • https://nvd.nist.gov/vuln/detail/CVE-2026-33211

Updates

Status

Fixed

Fixed version

1.4.0-r19

Status

Fix not planned

Impact

tekton-pipelines-1.4 is EOL (https://github.com/tektoncd/pipeline/blob/546de63973e23441de1197369064b6b0a77d7989/releases.md) so this vulnerability will not be fixed

Status

Under investigation


The trusted source for open source

Talk to an expert
PrivacyTerms

Product

Chainguard ContainersChainguard LibrariesChainguard VMsChainguard OS PackagesChainguard ActionsChainguard Agent SkillsIntegrationsPricing
© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.