Issued:: 2025-10-15
Updated:: 2025-10-15

RHSA-2025:18093 - Important: Red Hat OpenShift GitOps v1.18.1 security update

Synopsis

Important: Red Hat OpenShift GitOps v1.18.1 security update

Type/Severity

Security Advisory Important

Topic

Important: Red Hat OpenShift GitOps v1.18.1 security update

Description

An update is now available for Red Hat OpenShift GitOps. Bug Fix(es) and Enhancement(s):

GITOPS-7606 (ApplicationSet: Bitbucket SCM/PR generator leaks HTTP connections)
GITOPS-7953 (Default resource exclusions list not updated in ArgoCD CR template)
GITOPS-7955 ([1.18] ArgoCD UI fails when Progressive sync is enabled in AppSet but not controller)

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

Product	Version	Arch
Red Hat OpenShift GitOps	1.18	x86_64

Fixes

(none)

CVEs

(none)

References

https://access.redhat.com/security/cve/CVE-2025-55191

Additional information

The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.