Issued:

2026-01-13

Updated:

2026-01-13

RHSA-2026:0527 - Important: VolSync v0.14 security fixes and container updates

Synopsis

Important: VolSync v0.14 security fixes and container updates

Type/Severity

Security Advisory Important

Topic

VolSync v0.14 General Availability release images, which provide enhancements, security fixes, and updated container images.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.

Description

VolSync v0.14 is a Kubernetes operator that enables asynchronous replication of persistent volumes within a cluster, or across clusters. After deploying the VolSync operator, it can create and maintain copies of your persistent data.

For more information about VolSync, see:

https://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.15/html/business_continuity/business-cont-overview#volsync

or the VolSync open source community website at: https://volsync.readthedocs.io/en/stable/.

Solution

For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:

https://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.15/html/business_continuity/business-cont-overview#volsync

Affected Products

Fixes

(none)

CVEs

(none)

References

• https://access.redhat.com/security/cve/CVE-2025-47913

Additional information

• The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
• Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.