Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.
Reconnecting to live updates…
EPSS 0.7%top 53%

Red Hat Security Advisory: OpenShift Container Platform 4.17.55 bug fix and security update

0
High
Published: 07/09/2026 (07/09/2026, 07:24:01 UTC)
Source: GCVE Database
Vendor/Project: Red Hat Product Security
Product: Red Hat

Description

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.17.55. See the following advisory for the RPM packages for this release: https://access.redhat.com/errata/RHSA-2026:34097 Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes: https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/

Affected software

Affected versions
Red HatRed Hat OpenShift Container PlatformRed Hat OpenShift Container Platform 4.17amd64registry.redhat.io/openshift4/ose-cluster-autoscaler-rhel9@sha256:692e2e8bea1e6c00945d6937fa9b0ae01b80c705824fa73b8707bd7f7c38ec22_amd64

AI-Powered Analysis

Machine-generated threat intelligence

AILast updated: 07/04/2026, 02:02:03 UTC

Technical Analysis

This advisory covers multiple security vulnerabilities in the golang packages provided by Red Hat for Enterprise Linux 9. The fixed issues include: CVE-2026-27140, arbitrary code execution via malicious SWIG file names in cmd/go; CVE-2026-27143, possible memory corruption after bound check elimination in cmd/compile; CVE-2026-27144, no-op interface conversion bypassing overlap checking in cmd/compile; CVE-2026-32280, denial of service in certificate chain building in crypto/x509 and crypto/tls; CVE-2026-32282, symlink traversal in internal/syscall/unix Root.Chmod; and CVE-2026-32283, denial of service via multiple TLS 1.3 key update messages in crypto/tls. Red Hat has released updated golang packages (version 1.25.9-1.el9_7) that address these vulnerabilities across supported architectures. The advisory references Red Hat Bugzilla entries and provides links to update instructions.

Potential Impact

The vulnerabilities collectively allow for arbitrary code execution, denial of service conditions, memory corruption, and unauthorized file system access via symlink traversal. These issues could potentially be exploited by attackers to disrupt services or execute malicious code on affected systems running vulnerable golang packages. The security impact is rated as important by Red Hat, indicating a high risk to affected systems if unpatched.

Mitigation Recommendations

Red Hat has released an official security update for golang packages in Red Hat Enterprise Linux 9, specifically version 1.25.9-1.el9_7 and later. Users should apply this update promptly to remediate the vulnerabilities described. Detailed update instructions are available at https://access.redhat.com/articles/11258. No additional mitigations are specified beyond applying the official update.

Pro Console: star threats, build custom feeds, automate alerts via Slack, email & webhooks.Upgrade to Pro

Technical Details

Gcve Source
db.gcve.eu
Csaf Category
csaf_security_advisory
Csaf Version
2.0
Publisher
Red Hat Product Security
Advisory Id
RHSA-2026:10219
Cve Count
6
Additional Cves
["CVE-2026-27143","CVE-2026-27144","CVE-2026-32280","CVE-2026-32282","CVE-2026-32283"]
Cvss Version
null

Threat ID: 6a160976e29bf47b50640c0a

Added to database: 05/26/2026, 20:58:30 UTC

Last enriched: 07/04/2026, 02:02:03 UTC

Last updated: 07/11/2026, 07:47:29 UTC

Views: 70

Community Reviews

0 reviews

Crowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.

Sort by
Loading community insights…

Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.

Need more coverage?

Upgrade to Pro Console for AI refresh and higher limits.

For incident response and remediation, OffSeq services can help resolve threats faster.

Latest Threats

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses