Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Microsoft Windows Graphics Component Allows Remote Code Execution
CGA-g4jg-35cv-gfx5
Summary
A flaw in the Windows graphics component allows hackers to inject malicious code on a Windows computer without permission. This could lead to a system compromise, where an attacker could install malware, steal sensitive information, or disrupt system services. Windows users should update their system to the latest available patches to prevent exploitation.
What to do
- Update chainguard actions-runner to version 2.332.0-r1.
- Update chainguard arangodb-3.11 to version 3.11.14.3-r2.
- Update chainguard arangodb-3.12 to version 3.12.7.2-r3.
- Update chainguard code-server to version 4.109.2-r0.
- Update chainguard emscripten to version 5.0.2-r1.
- Update chainguard eslint to version 10.0.2-r1.
- Update chainguard graalvm-25-ce-nodejs to version 25.0.2-r4.
- Update chainguard kibana-8.17 to version 8.17.10-r12.
- Update chainguard kibana-8.17-bitnami to version 8.17.10-r12.
- Update chainguard kibana-8.17-iamguarded to version 8.17.10-r12.
- Update chainguard kibana-8.19 to version 8.19.12-r2.
- Update chainguard kibana-8.19-bitnami to version 8.19.12-r2.
- Update chainguard kibana-8.19-iamguarded to version 8.19.12-r2.
- Update chainguard kibana-9.0 to version 9.0.8-r13.
- Update chainguard kibana-9.0-bitnami to version 9.0.8-r13.
- Update chainguard kibana-9.0-iamguarded to version 9.0.8-r13.
- Update chainguard kibana-9.1 to version 9.1.10-r6.
- Update chainguard kibana-9.1-iamguarded to version 9.1.10-r6.
- Update chainguard kibana-9.2 to version 9.2.5-r5.
- Update chainguard kibana-9.2-iamguarded to version 9.2.5-r5.
- Update chainguard kibana-9.3 to version 9.3.0-r2.
- Update chainguard kibana-9.3-iamguarded to version 9.3.0-r2.
- Update chainguard kubeflow-centraldashboard to version 1.10.0-r13.
- Update chainguard langfuse-2-worker to version 2.95.12-r12.
- Update chainguard lerna to version 9.0.5-r1.
- Update chainguard librechat to version 0.8.2-r6.
- Update chainguard npm to version 11.11.0-r1.
- Update chainguard opensearch-dashboards-2-fips to version 2.19.4-r13.
- Update chainguard opensearch-dashboards-2-fips-dashboards-reporting to version 2.19.4-r13.
- Update chainguard opentelemetry-auto-instrumentations-node to version 0.70.1-r1.
- Update chainguard prism to version 5.14.3-r8.
- Update chainguard pulumi-language-nodejs to version 3.224.0-r1.
- Update chainguard renovate to version 43.49.0-r1.
- Update chainguard serve to version 14.2.6-r0.
- Update chainguard tileserver-gl to version 5.5.0-r6.
- Update chainguard tileserver-gl-fips to version 5.5.0-r7.
- Update chainguard vitess-22 to version 22.0.4-r4.
- Update chainguard vitess-23 to version 23.0.3-r5.
- Update wolfi code-server to version 4.109.2-r0.
- Update wolfi eslint to version 10.0.2-r1.
- Update wolfi kubeflow-centraldashboard to version 1.10.0-r13.
- Update wolfi lerna to version 9.0.5-r1.
- Update wolfi npm to version 11.11.0-r1.
- Update wolfi prism to version 5.14.3-r8.
- Update wolfi pulumi-language-nodejs to version 3.224.0-r1.
- Update wolfi renovate to version 43.49.0-r1.
- Update wolfi serve to version 14.2.6-r0.
- Update wolfi tileserver-gl to version 5.5.0-r6.
- Update wolfi vitess-22 to version 22.0.4-r4.
- Update wolfi vitess-23 to version 23.0.3-r5.
- Update chainguard opensearch-dashboards-3 to version 3.5.0-r6.
- Update chainguard opensearch-dashboards-3-dashboards-reporting to version 3.5.0-r6.
- Update wolfi opensearch-dashboards-3 to version 3.5.0-r6.
- Update wolfi opensearch-dashboards-3-dashboards-reporting to version 3.5.0-r6.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| chainguard | actions-runner | <= 2.332.0-r1 | 2.332.0-r1 |
| chainguard | arangodb-3.11 | <= 3.11.14.3-r2 | 3.11.14.3-r2 |
| chainguard | arangodb-3.12 | <= 3.12.7.2-r3 | 3.12.7.2-r3 |
| chainguard | code-server | <= 4.109.2-r0 | 4.109.2-r0 |
| chainguard | emscripten | <= 5.0.2-r1 | 5.0.2-r1 |
| chainguard | eslint | <= 10.0.2-r1 | 10.0.2-r1 |
| chainguard | graalvm-25-ce-nodejs | <= 25.0.2-r4 | 25.0.2-r4 |
| chainguard | kibana-8.17 | <= 8.17.10-r12 | 8.17.10-r12 |
| chainguard | kibana-8.17-bitnami | <= 8.17.10-r12 | 8.17.10-r12 |
| chainguard | kibana-8.17-iamguarded | <= 8.17.10-r12 | 8.17.10-r12 |
| chainguard | kibana-8.19 | <= 8.19.12-r2 | 8.19.12-r2 |
| chainguard | kibana-8.19-bitnami | <= 8.19.12-r2 | 8.19.12-r2 |
| chainguard | kibana-8.19-iamguarded | <= 8.19.12-r2 | 8.19.12-r2 |
| chainguard | kibana-9.0 | <= 9.0.8-r13 | 9.0.8-r13 |
| chainguard | kibana-9.0-bitnami | <= 9.0.8-r13 | 9.0.8-r13 |
| chainguard | kibana-9.0-iamguarded | <= 9.0.8-r13 | 9.0.8-r13 |
| chainguard | kibana-9.1 | <= 9.1.10-r6 | 9.1.10-r6 |
| chainguard | kibana-9.1-iamguarded | <= 9.1.10-r6 | 9.1.10-r6 |
| chainguard | kibana-9.2 | <= 9.2.5-r5 | 9.2.5-r5 |
| chainguard | kibana-9.2-iamguarded | <= 9.2.5-r5 | 9.2.5-r5 |
| chainguard | kibana-9.3 | <= 9.3.0-r2 | 9.3.0-r2 |
| chainguard | kibana-9.3-iamguarded | <= 9.3.0-r2 | 9.3.0-r2 |
| chainguard | kubeflow-centraldashboard | <= 1.10.0-r13 | 1.10.0-r13 |
| chainguard | langfuse-2-worker | <= 2.95.12-r12 | 2.95.12-r12 |
| chainguard | lerna | <= 9.0.5-r1 | 9.0.5-r1 |
| chainguard | librechat | <= 0.8.2-r6 | 0.8.2-r6 |
| chainguard | npm | <= 11.11.0-r1 | 11.11.0-r1 |
| chainguard | opensearch-dashboards-2-fips | <= 2.19.4-r13 | 2.19.4-r13 |
| chainguard | opensearch-dashboards-2-fips-dashboards-reporting | <= 2.19.4-r13 | 2.19.4-r13 |
| chainguard | opentelemetry-auto-instrumentations-node | <= 0.70.1-r1 | 0.70.1-r1 |
| chainguard | prism | <= 5.14.3-r8 | 5.14.3-r8 |
| chainguard | pulumi-language-nodejs | <= 3.224.0-r1 | 3.224.0-r1 |
| chainguard | renovate | <= 43.49.0-r1 | 43.49.0-r1 |
| chainguard | serve | <= 14.2.6-r0 | 14.2.6-r0 |
| chainguard | tileserver-gl | <= 5.5.0-r6 | 5.5.0-r6 |
| chainguard | tileserver-gl-fips | <= 5.5.0-r7 | 5.5.0-r7 |
| chainguard | vitess-22 | <= 22.0.4-r4 | 22.0.4-r4 |
| chainguard | vitess-23 | <= 23.0.3-r5 | 23.0.3-r5 |
| wolfi | code-server | <= 4.109.2-r0 | 4.109.2-r0 |
| wolfi | eslint | <= 10.0.2-r1 | 10.0.2-r1 |
| wolfi | kubeflow-centraldashboard | <= 1.10.0-r13 | 1.10.0-r13 |
| wolfi | lerna | <= 9.0.5-r1 | 9.0.5-r1 |
| wolfi | npm | <= 11.11.0-r1 | 11.11.0-r1 |
| wolfi | prism | <= 5.14.3-r8 | 5.14.3-r8 |
| wolfi | pulumi-language-nodejs | <= 3.224.0-r1 | 3.224.0-r1 |
| wolfi | renovate | <= 43.49.0-r1 | 43.49.0-r1 |
| wolfi | serve | <= 14.2.6-r0 | 14.2.6-r0 |
| wolfi | tileserver-gl | <= 5.5.0-r6 | 5.5.0-r6 |
| wolfi | vitess-22 | <= 22.0.4-r4 | 22.0.4-r4 |
| wolfi | vitess-23 | <= 23.0.3-r5 | 23.0.3-r5 |
| chainguard | opensearch-dashboards-3 | <= 3.5.0-r6 | 3.5.0-r6 |
| chainguard | opensearch-dashboards-3-dashboards-reporting | <= 3.5.0-r6 | 3.5.0-r6 |
| wolfi | opensearch-dashboards-3 | <= 3.5.0-r6 | 3.5.0-r6 |
| wolfi | opensearch-dashboards-3-dashboards-reporting | <= 3.5.0-r6 | 3.5.0-r6 |
| chainguard | opensearch-dashboards-3 | <= 3.5.0-r6 | 3.5.0-r6 |
| chainguard | opensearch-dashboards-3-dashboards-reporting | <= 3.5.0-r6 | 3.5.0-r6 |
| wolfi | opensearch-dashboards-3 | <= 3.5.0-r6 | 3.5.0-r6 |
| wolfi | opensearch-dashboards-3-dashboards-reporting | <= 3.5.0-r6 | 3.5.0-r6 |
Original title
CGA-g4jg-35cv-gfx5
Published: 28 Feb 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026