Red Hat Security Advisory: OpenShift Container Platform 4.18.38 bug fix and security update
Red Hat OpenShift Container Platform 4. 18. 38 includes a security update addressing multiple bugs and vulnerabilities, including CVE-2025-61728 and CVE-2025-61732. This update is rated as having an Important security impact by Red Hat Product Security. The advisory covers container images and RPM packages for this release, with instructions for upgrading clusters to apply the fixes. The vulnerabilities relate to the OpenShift Kubernetes platform used for on-premise or private cloud deployments. Users of OpenShift Container Platform 4. 18 are advised to upgrade to the updated packages and images to mitigate these issues.
AI Analysis
Technical Summary
This advisory announces the release of Red Hat OpenShift Container Platform 4.18.38, which includes bug fixes and security updates for the platform. It addresses two CVEs (CVE-2025-61728 and CVE-2025-61732) and several bug fixes affecting various components such as the cluster autoscaler and CSI drivers. The update applies to container images and RPM packages for OpenShift 4.18 and is intended for on-premise or private cloud deployments. Red Hat rates the security impact as Important. Detailed upgrade instructions and image digests are provided in the advisory and linked documentation.
Potential Impact
The vulnerabilities fixed in this update affect Red Hat OpenShift Container Platform 4.18 and could impact the security and stability of Kubernetes clusters deployed on-premise or in private clouds. The advisory does not specify exploitation in the wild. The security impact is rated Important by Red Hat, indicating a high severity but not critical. The update addresses potential issues that could affect cluster components and container images, improving overall platform security and reliability.
Mitigation Recommendations
Red Hat has released updated container images and RPM packages as part of OpenShift Container Platform 4.18.38 to address these vulnerabilities. Users should upgrade their OpenShift clusters to this version following the official upgrade instructions provided by Red Hat. The vendor manages remediation through these updates, and no additional mitigation steps beyond applying the update are specified. Patch status is confirmed as available via this advisory and related errata.
Red Hat Security Advisory: OpenShift Container Platform 4.18.38 bug fix and security update
Description
Red Hat OpenShift Container Platform 4. 18. 38 includes a security update addressing multiple bugs and vulnerabilities, including CVE-2025-61728 and CVE-2025-61732. This update is rated as having an Important security impact by Red Hat Product Security. The advisory covers container images and RPM packages for this release, with instructions for upgrading clusters to apply the fixes. The vulnerabilities relate to the OpenShift Kubernetes platform used for on-premise or private cloud deployments. Users of OpenShift Container Platform 4. 18 are advised to upgrade to the updated packages and images to mitigate these issues.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory announces the release of Red Hat OpenShift Container Platform 4.18.38, which includes bug fixes and security updates for the platform. It addresses two CVEs (CVE-2025-61728 and CVE-2025-61732) and several bug fixes affecting various components such as the cluster autoscaler and CSI drivers. The update applies to container images and RPM packages for OpenShift 4.18 and is intended for on-premise or private cloud deployments. Red Hat rates the security impact as Important. Detailed upgrade instructions and image digests are provided in the advisory and linked documentation.
Potential Impact
The vulnerabilities fixed in this update affect Red Hat OpenShift Container Platform 4.18 and could impact the security and stability of Kubernetes clusters deployed on-premise or in private clouds. The advisory does not specify exploitation in the wild. The security impact is rated Important by Red Hat, indicating a high severity but not critical. The update addresses potential issues that could affect cluster components and container images, improving overall platform security and reliability.
Mitigation Recommendations
Red Hat has released updated container images and RPM packages as part of OpenShift Container Platform 4.18.38 to address these vulnerabilities. Users should upgrade their OpenShift clusters to this version following the official upgrade instructions provided by Red Hat. The vendor manages remediation through these updates, and no additional mitigation steps beyond applying the update are specified. Patch status is confirmed as available via this advisory and related errata.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:8448
- Cve Count
- 2
- Additional Cves
- ["CVE-2025-61732"]
- Cvss Version
- null
Threat ID: 6a160976e29bf47b50640c22
Added to database: 5/26/2026, 8:58:30 PM
Last enriched: 5/26/2026, 10:10:53 PM
Last updated: 5/27/2026, 4:55:10 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.