Red Hat Security Advisory: Red Hat Ceph Storage
The Red Hat Storage Ceph container images are based on the latest ubi9 base image and Ceph 7.1. This release updates to the latest version.
AI Analysis
Technical Summary
This security advisory from Red Hat addresses multiple vulnerabilities in Red Hat Ceph Storage container images, which are now updated to use the latest ubi9 base image and Ceph 7.1. The advisory covers six CVEs (CVE-2025-6069, CVE-2025-8291, CVE-2025-45582, CVE-2025-61984, CVE-2025-61985, CVE-2025-68973) related to various weaknesses (including CWE-1333, CWE-130, CWE-24, CWE-159, CWE-158, CWE-675). The update fixes several bugs and rebases Python to version 3.12.12. The vendor advisory confirms the availability of updated container images for download and deployment.
Potential Impact
The vulnerabilities addressed are rated as high severity by Red Hat. Although no known exploits in the wild have been reported, the presence of multiple CVEs indicates potential risks if unpatched. The impact involves security weaknesses in the Red Hat Ceph Storage container images that could be leveraged if left unmitigated.
Mitigation Recommendations
Red Hat has provided updated container images that include fixes for the identified vulnerabilities. Users should pull the latest images from the Red Hat container registry using the "podman pull" command as specified in the advisory. Applying these updates will remediate the vulnerabilities. There is no indication that additional mitigations beyond updating the container images are required.
Red Hat Security Advisory: Red Hat Ceph Storage
Description
The Red Hat Storage Ceph container images are based on the latest ubi9 base image and Ceph 7.1. This release updates to the latest version.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This security advisory from Red Hat addresses multiple vulnerabilities in Red Hat Ceph Storage container images, which are now updated to use the latest ubi9 base image and Ceph 7.1. The advisory covers six CVEs (CVE-2025-6069, CVE-2025-8291, CVE-2025-45582, CVE-2025-61984, CVE-2025-61985, CVE-2025-68973) related to various weaknesses (including CWE-1333, CWE-130, CWE-24, CWE-159, CWE-158, CWE-675). The update fixes several bugs and rebases Python to version 3.12.12. The vendor advisory confirms the availability of updated container images for download and deployment.
Potential Impact
The vulnerabilities addressed are rated as high severity by Red Hat. Although no known exploits in the wild have been reported, the presence of multiple CVEs indicates potential risks if unpatched. The impact involves security weaknesses in the Red Hat Ceph Storage container images that could be leveraged if left unmitigated.
Mitigation Recommendations
Red Hat has provided updated container images that include fixes for the identified vulnerabilities. Users should pull the latest images from the Red Hat container registry using the "podman pull" command as specified in the advisory. Applying these updates will remediate the vulnerabilities. There is no indication that additional mitigations beyond updating the container images are required.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:1858
- Cve Count
- 6
- Additional Cves
- ["CVE-2025-8291","CVE-2025-45582","CVE-2025-61984","CVE-2025-61985","CVE-2025-68973"]
- Cvss Version
- null
Threat ID: 6a19febbe29bf47b500fd02a
Added to database: 5/29/2026, 9:01:47 PM
Last enriched: 5/29/2026, 9:05:45 PM
Last updated: 5/31/2026, 4:59:02 AM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.