OpenShift Container Platform 4.17.50 Security Update

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.2

OpenShift Container Platform 4.17.50 Security Update

RHSA-2026:3416

Summary

An open-source platform for managing containerized applications is being updated to fix security issues that could allow an attacker to gain elevated privileges, read sensitive information, or take control of the system. This update is recommended for all users to apply to their OpenShift environments to ensure the security and integrity of their applications and data.

What to do

Update redhat buildah to version 2:1.33.12-3.rhaos4.17.el8.
Update redhat buildah-debuginfo to version 2:1.33.12-3.rhaos4.17.el8.
Update redhat buildah-debugsource to version 2:1.33.12-3.rhaos4.17.el8.
Update redhat buildah-tests to version 2:1.33.12-3.rhaos4.17.el8.
Update redhat buildah-tests-debuginfo to version 2:1.33.12-3.rhaos4.17.el8.
Update redhat buildah to version 2:1.33.12-3.rhaos4.17.el9.
Update redhat buildah-debuginfo to version 2:1.33.12-3.rhaos4.17.el9.
Update redhat buildah-debugsource to version 2:1.33.12-3.rhaos4.17.el9.
Update redhat buildah-tests to version 2:1.33.12-3.rhaos4.17.el9.
Update redhat buildah-tests-debuginfo to version 2:1.33.12-3.rhaos4.17.el9.
Update redhat containernetworking-plugins to version 1:1.4.0-7.rhaos4.17.el8.
Update redhat containernetworking-plugins-debuginfo to version 1:1.4.0-7.rhaos4.17.el8.
Update redhat containernetworking-plugins-debugsource to version 1:1.4.0-7.rhaos4.17.el8.
Update redhat runc to version 4:1.2.9-3.rhaos4.17.el8.
Update redhat runc-debuginfo to version 4:1.2.9-3.rhaos4.17.el8.
Update redhat runc-debugsource to version 4:1.2.9-3.rhaos4.17.el8.
Update redhat skopeo to version 2:1.16.1-4.rhaos4.17.el8.
Update redhat skopeo-tests to version 2:1.16.1-4.rhaos4.17.el8.
Update redhat runc to version 4:1.2.9-3.rhaos4.17.el9.
Update redhat runc-debuginfo to version 4:1.2.9-3.rhaos4.17.el9.
Update redhat runc-debugsource to version 4:1.2.9-3.rhaos4.17.el9.
Update redhat skopeo to version 2:1.16.1-4.rhaos4.17.el9.
Update redhat skopeo-debuginfo to version 2:1.16.1-4.rhaos4.17.el9.
Update redhat skopeo-debugsource to version 2:1.16.1-4.rhaos4.17.el9.
Update redhat skopeo-tests to version 2:1.16.1-4.rhaos4.17.el9.

Affected software

Vendor	Product	Affected versions	Fix available
redhat	buildah	<= 2:1.33.12-3.rhaos4.17.el8	2:1.33.12-3.rhaos4.17.el8
redhat	buildah-debuginfo	<= 2:1.33.12-3.rhaos4.17.el8	2:1.33.12-3.rhaos4.17.el8
redhat	buildah-debugsource	<= 2:1.33.12-3.rhaos4.17.el8	2:1.33.12-3.rhaos4.17.el8
redhat	buildah-tests	<= 2:1.33.12-3.rhaos4.17.el8	2:1.33.12-3.rhaos4.17.el8
redhat	buildah-tests-debuginfo	<= 2:1.33.12-3.rhaos4.17.el8	2:1.33.12-3.rhaos4.17.el8
redhat	buildah	<= 2:1.33.12-3.rhaos4.17.el9	2:1.33.12-3.rhaos4.17.el9
redhat	buildah-debuginfo	<= 2:1.33.12-3.rhaos4.17.el9	2:1.33.12-3.rhaos4.17.el9
redhat	buildah-debugsource	<= 2:1.33.12-3.rhaos4.17.el9	2:1.33.12-3.rhaos4.17.el9
redhat	buildah-tests	<= 2:1.33.12-3.rhaos4.17.el9	2:1.33.12-3.rhaos4.17.el9
redhat	buildah-tests-debuginfo	<= 2:1.33.12-3.rhaos4.17.el9	2:1.33.12-3.rhaos4.17.el9
redhat	containernetworking-plugins	<= 1:1.4.0-7.rhaos4.17.el8	1:1.4.0-7.rhaos4.17.el8
redhat	containernetworking-plugins-debuginfo	<= 1:1.4.0-7.rhaos4.17.el8	1:1.4.0-7.rhaos4.17.el8
redhat	containernetworking-plugins-debugsource	<= 1:1.4.0-7.rhaos4.17.el8	1:1.4.0-7.rhaos4.17.el8
redhat	runc	<= 4:1.2.9-3.rhaos4.17.el8	4:1.2.9-3.rhaos4.17.el8
redhat	runc-debuginfo	<= 4:1.2.9-3.rhaos4.17.el8	4:1.2.9-3.rhaos4.17.el8
redhat	runc-debugsource	<= 4:1.2.9-3.rhaos4.17.el8	4:1.2.9-3.rhaos4.17.el8
redhat	skopeo	<= 2:1.16.1-4.rhaos4.17.el8	2:1.16.1-4.rhaos4.17.el8
redhat	skopeo-tests	<= 2:1.16.1-4.rhaos4.17.el8	2:1.16.1-4.rhaos4.17.el8
redhat	runc	<= 4:1.2.9-3.rhaos4.17.el9	4:1.2.9-3.rhaos4.17.el9
redhat	runc-debuginfo	<= 4:1.2.9-3.rhaos4.17.el9	4:1.2.9-3.rhaos4.17.el9
redhat	runc-debugsource	<= 4:1.2.9-3.rhaos4.17.el9	4:1.2.9-3.rhaos4.17.el9
redhat	skopeo	<= 2:1.16.1-4.rhaos4.17.el9	2:1.16.1-4.rhaos4.17.el9
redhat	skopeo-debuginfo	<= 2:1.16.1-4.rhaos4.17.el9	2:1.16.1-4.rhaos4.17.el9
redhat	skopeo-debugsource	<= 2:1.16.1-4.rhaos4.17.el9	2:1.16.1-4.rhaos4.17.el9
redhat	skopeo-tests	<= 2:1.16.1-4.rhaos4.17.el9	2:1.16.1-4.rhaos4.17.el9

Original title

Red Hat Security Advisory: OpenShift Container Platform 4.17.50 packages and security update

osv CVSS3.1 8.2

https://access.redhat.com/errata/RHSA-2026:3416 Vendor Advisory
https://access.redhat.com/security/updates/classification/#important Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2404715 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2434432 Third Party Advisory
https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3416.j... Vendor Advisory
https://access.redhat.com/security/cve/CVE-2025-52881 Third Party Advisory
https://www.cve.org/CVERecord?id=CVE-2025-52881 Vendor Advisory
https://nvd.nist.gov/vuln/detail/CVE-2025-52881 Vendor Advisory
https://github.com/opencontainers/selinux/pull/237 Third Party Advisory
https://access.redhat.com/security/cve/CVE-2025-61726 Third Party Advisory
https://www.cve.org/CVERecord?id=CVE-2025-61726 Vendor Advisory
https://nvd.nist.gov/vuln/detail/CVE-2025-61726 Vendor Advisory
https://go.dev/cl/736712 Third Party Advisory
https://go.dev/issue/77101 Third Party Advisory
https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc Third Party Advisory
https://pkg.go.dev/vuln/GO-2026-4341 Vendor Advisory

Published: 4 Mar 2026 · Updated: 7 Mar 2026 · First seen: 6 Mar 2026