Important: Red Hat Security Advisory: Red Hat OpenShift GitOps v1.16.5 security update

Important: Red Hat OpenShift GitOps v1.16.5 security update An update is now available for Red Hat OpenShift GitOps. Bug Fixes and Enhancements: GITOPS-8116 CVE-2024-45338 openshift-gitops-dex-container: Non-linear parsing of case-insensitive content in golang.org/x/net/html gitops-1.17 GITOPS-80...

CVE-2025-13888 Openshift-gitops-operator: openshift gitops: namespace admin cluster takeover via privileged jobs

A flaw was found in OpenShift GitOps. Namespace admins can create ArgoCD Custom Resources CRs that trick the system into granting them elevated permissions in other namespaces, including privileged namespaces. An authenticated attacker can then use these elevated permissions to create privileged...

CVE-2025-13888 Openshift-gitops-operator: openshift gitops: namespace admin cluster takeover via privileged jobs

A flaw was found in OpenShift GitOps. Namespace admins can create ArgoCD Custom Resources CRs that trick the system into granting them elevated permissions in other namespaces, including privileged namespaces. An authenticated attacker can then use these elevated permissions to create privileged...

CVE-2025-13888

A flaw was found in OpenShift GitOps. Namespace admins can create ArgoCD Custom Resources CRs that trick the system into granting them elevated permissions in other namespaces, including privileged namespaces. An authenticated attacker can then use these elevated permissions to create privileged...

CVE-2025-13888

Summary: CVE-2025-13888 affects OpenShift GitOps. Namespace admins can create ArgoCD Custom Resources (CRs) that abuse permissions to obtain elevated rights in other namespaces, enabling privileged workloads on master nodes and potential cluster-wide root access. The issue is corroborated by mult...

Important: Red Hat Security Advisory: Red Hat OpenShift GitOps v1.18.2 security update

Important: Red Hat OpenShift GitOps v1.18.2 security update An update is now available for Red Hat OpenShift GitOps. Bug Fixes and Enhancements: GITOPS-7608 Redis HA pods are taking longer than expected to come up GITOPS-7789 Version override in ArgoCD CR causes operator to use upstream images...

Red Hat OpenShift GitOps 安全漏洞

Red Hat OpenShift GitOps is an automated deployment service from Red Hat USA. A security vulnerability exists in Red Hat OpenShift GitOps that stems from a namespace administrator being able to create an ArgoCD custom resource to gain privileges, potentially leading to full control of the cluster...

PT-2025-51238

Name of the Vulnerable Software and Affected Versions OpenShift GitOps affected versions not specified Description A security issue exists in OpenShift GitOps where namespace administrators can create malicious ArgoCD Custom Resources CRs. These CRs can deceive the system into granting the...

Important: Red Hat Security Advisory: Red Hat OpenShift GitOps v1.18.1 security update

Important: Red Hat OpenShift GitOps v1.18.1 security update An update is now available for Red Hat OpenShift GitOps. Bug Fixes and Enhancements: GITOPS-7606 ApplicationSet: Bitbucket SCM/PR generator leaks HTTP connections GITOPS-7953 Default resource exclusions list not updated in ArgoCD CR...

Important: Red Hat Security Advisory: Red Hat OpenShift GitOps v1.16.4 security update

Important: Red Hat OpenShift GitOps v1.16.4 security update An update is now available for Red Hat OpenShift GitOps. Bug Fixes and Enhancements: GITOPS-6703 After Upgrade to v.1.16 not able to add --metrics-application-labels in spec.controller.extraCommandArgs with multiple values GITOPS-7180...

EUVD-2025-0134

Malicious code in bioql PyPI...

Important: Red Hat Security Advisory: Red Hat OpenShift GitOps security update

Red Hat OpenShift GitOps v1.17.1 release An update is now available for Red Hat OpenShift GitOps. Security Fixes: openshift-gitops-1/argocd-rhel8: Project API Token Exposes Repository Credentials gitops-1.17 openshift-gitops-1/argocd-rhel9: Project API Token Exposes Repository Credentials...

Moderate: Red Hat Security Advisory: Red Hat OpenShift GitOps security update

Red Hat OpenShift GitOps v1.16.2 release An update is now available for Red Hat OpenShift GitOps. Security Fixes: openshift-gitops-operator-container: Namespace Isolation Break gitops-1.16 Bug Fixes: Gitops operator is not accepting regular expression in sourceNamespaces - Application in...

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update

Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update. Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security release. Security Fixes: openshift-gitops-argocd-container: Improper URL Sanitization in Argo CD Repository Page Allows Cross-Site Scripting XSS gitops-1.14...

Important: Red Hat Security Advisory: Red Hat OpenShift GitOps 1.16.1 security release

Errata advisory for Red Hat OpenShift GitOps 1.16.1 security release. The Red Hat OpenShift GitOps 1.16.1 release provides security updates to the Argo CD CLI, Argo Rollouts CLI and MicroShift GitOps. Security Fixes: openshift-gitops-1/argocd-rhel9: Improper URL Sanitization in Argo CD Repository...

RHEL 8 / 9 : Red Hat OpenShift GitOps 1.16.1 security (Important) (RHSA-2025:8269)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:8269 advisory. The Red Hat OpenShift GitOps 1.16.1 release provides security updates to the Argo CD CLI, Argo Rollouts CLI and MicroShift GitOps. Security Fixes...

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.2 security update

Errata Advisory for Red Hat OpenShift GitOps 1.15.2 release Errata Advisory for Red Hat OpenShift GitOps 1.15.2 release Security Fixes: openshift-gitops-operator-container: Namespace Isolation Break gitops-1.15 openshift-gitops-argocd-container: Go JOSE's Parsing Vulnerable to Denial of Service...

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.1 security update

An update is now available for Red Hat OpenShift GitOps v1.15.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

SUSE CVE-2024-13484

A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the...

CVE-2024-13484 Openshift-gitops-operator-container: namespace isolation break

A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the...