{"@context":"https://openvex.dev/ns/v0.2.0","@id":"pkg:docker/operator@1.19.0","author":"security@datadoghq.com","author_role":"Vulnerability Management","last_updated":"2026-05-14T11:46:33.213100206Z","statements":[{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.067082Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.067082Z","products":[{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.067082Z","vulnerability":{"name":"CVE-2026-5435"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.066517Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.066517Z","products":[{"@id":"pkg:rpm/redhat/coreutils-single@8.32-39.el9?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=coreutils-8.32-39.el9.src.rpm"},{"@id":"pkg:rpm/redhat/coreutils-single@8.32-39.el9?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=coreutils-8.32-39.el9.src.rpm"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.066517Z","vulnerability":{"name":"CVE-2025-5278"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.066571Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.066571Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.066571Z","vulnerability":{"name":"CVE-2026-39820"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.066622Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.066622Z","products":[{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.066622Z","vulnerability":{"name":"CVE-2026-4437"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.066688Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.066688Z","products":[{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.066687Z","vulnerability":{"name":"CVE-2026-4046"}},{"action_statement":"This vulnerability was fixed in: 1.25.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:35.588454Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.066776Z","vulnerability":{"name":"CVE-2026-25679"}},{"action_statement":"This vulnerability was fixed in: 1.24.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:16:07.1556Z","products":[{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"}],"status":"affected","timestamp":"2026-05-14T10:24:12.066825Z","vulnerability":{"name":"CVE-2025-15281"}},{"action_statement":"This vulnerability was fixed in: 1.20.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:34:08.617239Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.066892Z","vulnerability":{"name":"CVE-2025-61725"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.067158Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.067158Z","products":[{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.067158Z","vulnerability":{"name":"CVE-2026-5450"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.067354Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.067354Z","products":[{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.067354Z","vulnerability":{"name":"CVE-2026-5928"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.06745Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.06745Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.06745Z","vulnerability":{"name":"CVE-2026-42499"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.067617Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.067617Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.067616Z","vulnerability":{"name":"CVE-2026-33814"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.06783Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.06783Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.06783Z","vulnerability":{"name":"CVE-2026-39836"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.067974Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.067973Z","products":[{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.067973Z","vulnerability":{"name":"CVE-2026-4438"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.06831Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.06831Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.06831Z","vulnerability":{"name":"CVE-2026-33811"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.069033Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.069033Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.069033Z","vulnerability":{"name":"CVE-2026-39826"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.069117Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.069117Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.069117Z","vulnerability":{"name":"CVE-2026-39817"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.069173Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.069173Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.069173Z","vulnerability":{"name":"CVE-2026-42501"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.069236Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.069235Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.069235Z","vulnerability":{"name":"CVE-2026-39825"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.069391Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.069391Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.069391Z","vulnerability":{"name":"CVE-2026-39823"}},{"action_statement":"","action_statement_timestamp":"2026-05-14T10:24:12.070058Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:24:12.070058Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"under_investigation","timestamp":"2026-05-14T10:24:12.070058Z","vulnerability":{"name":"CVE-2026-39819"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.972609Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.069652Z","vulnerability":{"name":"CVE-2026-32289"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.972555Z","products":[{"@id":"pkg:rpm/redhat/ncurses-base@6.2-10.20210508.el9_6.2?arch=noarch\u0026distro=rhel-9.6\u0026upstream=ncurses-6.2-10.20210508.el9_6.2.src.rpm"},{"@id":"pkg:rpm/redhat/ncurses-libs@6.2-10.20210508.el9_6.2?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=ncurses-6.2-10.20210508.el9_6.2.src.rpm"},{"@id":"pkg:rpm/redhat/ncurses-libs@6.2-10.20210508.el9_6.2?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=ncurses-6.2-10.20210508.el9_6.2.src.rpm"}],"status":"affected","timestamp":"2026-05-14T10:24:12.067232Z","vulnerability":{"name":"CVE-2023-50495"}},{"action_statement":"This vulnerability was fixed in: 1.21.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:43:28.321948Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.06996Z","vulnerability":{"name":"CVE-2025-61727"}},{"action_statement":"This vulnerability was fixed in: 1.20.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:34:08.617268Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.066957Z","vulnerability":{"name":"CVE-2025-61723"}},{"action_statement":"This vulnerability was fixed in: 1.20.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:34:08.617274Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.067575Z","vulnerability":{"name":"CVE-2025-58186"}},{"action_statement":"This vulnerability was fixed in: 1.20.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:34:08.61728Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.067921Z","vulnerability":{"name":"CVE-2025-58185"}},{"action_statement":"This vulnerability was fixed in: 1.20.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:34:08.617284Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.068252Z","vulnerability":{"name":"CVE-2025-58187"}},{"action_statement":"This vulnerability was fixed in: 1.20.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:34:08.6173Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.069345Z","vulnerability":{"name":"CVE-2025-58183"}},{"action_statement":"This vulnerability was fixed in: 1.20.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:34:08.617289Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.068454Z","vulnerability":{"name":"CVE-2025-47912"}},{"action_statement":"This vulnerability was fixed in: 1.20.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:34:08.617292Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.068572Z","vulnerability":{"name":"CVE-2025-61724"}},{"action_statement":"This vulnerability was fixed in: 1.20.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:34:08.617297Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.069293Z","vulnerability":{"name":"CVE-2025-58189"}},{"action_statement":"This vulnerability was fixed in: 1.20.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:34:08.617307Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.069576Z","vulnerability":{"name":"CVE-2025-58188"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.972561Z","products":[{"@id":"pkg:rpm/redhat/libgcc@11.5.0-5.el9_5?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=gcc-11.5.0-5.el9_5.src.rpm"},{"@id":"pkg:rpm/redhat/libgcc@11.5.0-5.el9_5?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=gcc-11.5.0-5.el9_5.src.rpm"}],"status":"affected","timestamp":"2026-05-14T10:24:12.067497Z","vulnerability":{"name":"CVE-2022-27943"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.972566Z","products":[{"@id":"pkg:rpm/redhat/pcre2@10.40-6.el9?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=pcre2-10.40-6.el9.src.rpm"},{"@id":"pkg:rpm/redhat/pcre2-syntax@10.40-6.el9?arch=noarch\u0026distro=rhel-9.6\u0026upstream=pcre2-10.40-6.el9.src.rpm"},{"@id":"pkg:rpm/redhat/pcre2@10.40-6.el9?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=pcre2-10.40-6.el9.src.rpm"}],"status":"affected","timestamp":"2026-05-14T10:24:12.067534Z","vulnerability":{"name":"CVE-2022-41409"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.97257Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.067731Z","vulnerability":{"name":"CVE-2026-27143"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.972578Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.06812Z","vulnerability":{"name":"CVE-2026-32280"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.972573Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.068064Z","vulnerability":{"name":"CVE-2026-32281"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.972582Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.068192Z","vulnerability":{"name":"CVE-2026-32283"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.972591Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.068408Z","vulnerability":{"name":"CVE-2026-27140"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"The vulnerability exploits the BSD-specific kenv command in the OpenTelemetry Go SDK resource detection. This code is gated by Go OS build constraints and is only compiled on BSD/Solaris targets. The operator binary is built with GOOS=linux, so the vulnerable code is excluded from the compiled binary and is not present in the image.","justification":"vulnerable_code_not_present","last_updated":"2026-05-14T11:35:02.972606Z","products":[{"@id":"pkg:golang/go.opentelemetry.io/otel/sdk@v1.33.0"}],"status":"affected","timestamp":"2026-05-14T10:24:12.069613Z","vulnerability":{"name":"CVE-2026-39883"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"This vulnerability is not exploitable in our environment, as the affected function is not used by the application. The binary does not link against or invoke the vulnerable component (cap_set_file function).","justification":"vulnerable_code_not_present","last_updated":"2026-05-14T11:35:02.972603Z","products":[{"@id":"pkg:rpm/redhat/libcap@2.48-9.el9_2?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=libcap-2.48-9.el9_2.src.rpm"},{"@id":"pkg:rpm/redhat/libcap@2.48-9.el9_2?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=libcap-2.48-9.el9_2.src.rpm"}],"status":"affected","timestamp":"2026-05-14T10:24:12.06952Z","vulnerability":{"name":"CVE-2026-4878"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.972614Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.06986Z","vulnerability":{"name":"CVE-2026-32282"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.972617Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.070011Z","vulnerability":{"name":"CVE-2026-27144"}},{"action_statement":"This vulnerability was fixed in: 1.26.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:35:02.97262Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.07013Z","vulnerability":{"name":"CVE-2026-32288"}},{"action_statement":"This vulnerability was fixed in: 1.25.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:35.588853Z","products":[{"@id":"pkg:golang/google.golang.org/grpc@v1.69.4"}],"status":"affected","timestamp":"2026-05-14T10:24:12.06767Z","vulnerability":{"name":"CVE-2026-33186"}},{"action_statement":"This vulnerability was fixed in: 1.25.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:35.588987Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.069488Z","vulnerability":{"name":"CVE-2026-27142"}},{"action_statement":"This vulnerability was fixed in: 1.25.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:32:35.589119Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.070174Z","vulnerability":{"name":"CVE-2026-27139"}},{"action_statement":"This vulnerability was fixed in: 1.24.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:16:07.155634Z","products":[{"@id":"pkg:golang/go.opentelemetry.io/otel/sdk@v1.33.0"}],"status":"affected","timestamp":"2026-05-14T10:24:12.068675Z","vulnerability":{"name":"CVE-2026-24051"}},{"action_statement":"This vulnerability was fixed in: 1.24.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:16:07.155628Z","products":[{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"}],"status":"affected","timestamp":"2026-05-14T10:24:12.068612Z","vulnerability":{"name":"CVE-2026-0915"}},{"action_statement":"This vulnerability was fixed in: 1.24.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:16:07.155639Z","products":[{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=x86_64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-common@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"},{"@id":"pkg:rpm/redhat/glibc-minimal-langpack@2.34-168.el9_6.23?arch=aarch64\u0026distro=rhel-9.6\u0026upstream=glibc-2.34-168.el9_6.23.src.rpm"}],"status":"affected","timestamp":"2026-05-14T10:24:12.069781Z","vulnerability":{"name":"CVE-2026-0861"}},{"action_statement":"This vulnerability was fixed in: 1.23.1","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:08:00.950236Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.067879Z","vulnerability":{"name":"CVE-2025-68121"}},{"action_statement":"This vulnerability was fixed in: 1.23.1","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T11:08:00.950268Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.069728Z","vulnerability":{"name":"CVE-2025-61732"}},{"action_statement":"This vulnerability was fixed in: 1.23.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:59:58.050408Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.067006Z","vulnerability":{"name":"CVE-2025-61726"}},{"action_statement":"This vulnerability was fixed in: 1.23.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:59:58.050447Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.068524Z","vulnerability":{"name":"CVE-2025-61728"}},{"action_statement":"This vulnerability was fixed in: 1.23.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:59:58.050453Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.069438Z","vulnerability":{"name":"CVE-2025-61731"}},{"action_statement":"This vulnerability was fixed in: 1.23.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:59:58.050462Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.069914Z","vulnerability":{"name":"CVE-2025-61730"}},{"action_statement":"This vulnerability was fixed in: 1.21.0","action_statement_timestamp":"0001-01-01T00:00:00Z","impact_statement":"","justification":"","last_updated":"2026-05-14T10:43:28.321906Z","products":[{"@id":"pkg:golang/stdlib@1.24.6"}],"status":"affected","timestamp":"2026-05-14T10:24:12.068357Z","vulnerability":{"name":"CVE-2025-61729"}}],"timestamp":"2026-03-12T17:45:43.078341458Z","tooling":"","version":18}