This advisory covers Red Hat OpenShift Container Platform 4.18.35, which includes fixes for several security vulnerabilities (CVE-2025-47907, CVE-2025-58183, CVE-2025-61726, CVE-2025-61729) and bug fixes. The platform is a Kubernetes application platform for on-premise or private cloud environments. The update addresses issues related to concurrency (CWE-362), improper resource management (CWE-770), and other weaknesses (CWE-1050). The vendor rates the update as having an Important security impact. The advisory provides updated container images and RPM packages, with instructions to upgrade clusters accordingly. No CVSS scores are provided, but the severity is assessed as high by the vendor.

The vulnerabilities fixed in this update have been rated by Red Hat Product Security as Important, indicating a high security impact. The issues could affect the stability and security of OpenShift Container Platform deployments, potentially leading to denial of service or other security concerns related to concurrency and resource management. However, there are no known exploits in the wild at this time. The update improves the security posture of affected OpenShift clusters by addressing these vulnerabilities.

Red Hat has released updated container images and RPM packages for OpenShift Container Platform 4.18.35 that address these vulnerabilities. Users should upgrade their OpenShift clusters to this version following the official Red Hat upgrade documentation to fully apply the fixes. The vendor manages remediation through these updates; no additional mitigation steps are indicated. Patch status is confirmed by the vendor advisory. Users should monitor Red Hat's release channels and apply updates promptly.