Issued:

2025-06-23

Updated:

2025-06-23

RHSA-2025:9388 - Important: Red Hat Multicluster GlobalHub 1.2.3 bug fixes and container updates

Synopsis

Important: Red Hat Multicluster GlobalHub 1.2.3 bug fixes and container updates

Type/Severity

Security Advisory Important

Topic

Red Hat multicluster global hub 1.2.3 General Availability release images, which provide enhancements, bug fixes, and updated container images.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.

Description

Red Hat multicluster global hub 1.2.3 images

This advisory contains the container images for Red Hat multicluster global hub. These container images provide enhancements and fix several bugs.

Security fixes:

• golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204)

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

Affected Products

Fixes

• This content is not included.BZ - 2354195

CVEs

• CVE-2024-2236
• CVE-2024-5535
• CVE-2025-0395
• CVE-2025-30204

References

• https://access.redhat.com/security/updates/classification/#important

Additional information

• The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
• Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.