See the full list of npm packages compromised in the "TanStack Supply Chain Compromise - May 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
Affects task-fips | Versions <3.50.0-r0
Has fix
chainguard:latestPublished 13 May 2026
- H
NULL Pointer DereferenceCVE-2026-39836
Affects teleport-18.6 | Versions <18.6.8-r14
Has fix
chainguard:latestPublished 13 May 2026
- M
Link FollowingCVE-2026-39819
Affects task-fips | Versions <3.50.0-r0
Has fix
chainguard:latestPublished 13 May 2026
- M
Allocation of Resources Without Limits or ThrottlingCVE-2025-61728
Affects podman-tests-debuginfo | Versions <6:5.4.0-15.el10_0.1
Has fix
rhel:10Published 13 May 2026
- M
Allocation of Resources Without Limits or ThrottlingCVE-2025-61728
Affects podman-tests | Versions <6:5.4.0-15.el10_0.1
Has fix
rhel:10Published 13 May 2026
- M
Allocation of Resources Without Limits or ThrottlingCVE-2025-61728
Affects podman-remote-debuginfo | Versions <6:5.4.0-15.el10_0.1
Has fix
rhel:10Published 13 May 2026
- M
Allocation of Resources Without Limits or ThrottlingCVE-2025-61728
Affects podman-remote | Versions <6:5.4.0-15.el10_0.1
Has fix
rhel:10Published 13 May 2026
- M
Allocation of Resources Without Limits or ThrottlingCVE-2025-61728
Affects podman-docker | Versions <6:5.4.0-15.el10_0.1
Has fix
rhel:10Published 13 May 2026
- M
Allocation of Resources Without Limits or ThrottlingCVE-2025-61728
Affects podman-debugsource | Versions <6:5.4.0-15.el10_0.1
Has fix
rhel:10Published 13 May 2026
- M
Allocation of Resources Without Limits or ThrottlingCVE-2025-61728
Affects podman-debuginfo | Versions <6:5.4.0-15.el10_0.1
Has fix
rhel:10Published 13 May 2026
- M
Allocation of Resources Without Limits or ThrottlingCVE-2025-61728
Affects podman | Versions <6:5.4.0-15.el10_0.1
Has fix
rhel:10Published 13 May 2026
Affects telegraf-1.37 | Versions <1.37.3-r12
Has fix
chainguard:latestPublished 13 May 2026
Affects telegraf-1.37 | Versions <1.37.3-r12
Has fix
chainguard:latestPublished 13 May 2026
Affects telegraf-1.37 | Versions <1.37.3-r12
Has fix
chainguard:latestPublished 13 May 2026
- L
Improper Encoding or Escaping of OutputCVE-2026-39826
Affects telegraf-1.37 | Versions <1.37.3-r12
Has fix
chainguard:latestPublished 13 May 2026
Affects telegraf-1.37 | Versions <1.37.3-r12
Has fix
chainguard:latestPublished 13 May 2026
Affects telegraf-1.37 | Versions <1.37.3-r12
Has fix
chainguard:latestPublished 13 May 2026
Affects telegraf-1.37 | Versions <1.37.3-r12
Has fix
chainguard:latestPublished 13 May 2026
- H
Allocation of Resources Without Limits or ThrottlingCVE-2026-39820
Affects telegraf-1.37 | Versions <1.37.3-r12
Has fix
chainguard:latestPublished 13 May 2026
Affects telegraf-1.37 | Versions <1.37.3-r12
Has fix
chainguard:latestPublished 13 May 2026
- H
Loop with Unreachable Exit Condition ('Infinite Loop')CVE-2026-33814
Affects telegraf-1.37 | Versions <1.37.3-r13
Has fix
chainguard:latestPublished 13 May 2026
- M
Integer Overflow or WraparoundCVE-2026-42308
Affects pillow | Versions *
No fix available
debian:13Published 13 May 2026
- M
Out-of-bounds WriteCVE-2026-39817
Affects step-kms-plugin-fips | Versions <0.17.0-r1
Has fix
chainguard:latestPublished 13 May 2026
Affects task-fips | Versions <3.50.0-r0
Has fix
chainguard:latestPublished 13 May 2026
- M
Out-of-bounds WriteCVE-2026-39817
Affects task-fips | Versions <3.50.0-r0
Has fix
chainguard:latestPublished 13 May 2026
- H
NULL Pointer DereferenceCVE-2026-39836
Affects step-kms-plugin-fips | Versions <0.17.0-r1
Has fix
chainguard:latestPublished 13 May 2026
Affects task-fips | Versions <3.50.0-r0
Has fix
chainguard:latestPublished 13 May 2026
- H
Loop with Unreachable Exit Condition ('Infinite Loop')CVE-2026-33814
Affects syft-fips | Versions <1.44.0-r0
Has fix
chainguard:latestPublished 13 May 2026
Affects syft-fips | Versions <1.44.0-r0
Has fix
chainguard:latestPublished 13 May 2026
Affects syft-fips | Versions <1.44.0-r0
Has fix
chainguard:latestPublished 13 May 2026