Issued:: 2025-12-02
Updated:: 2025-12-02

RHSA-2025:22620 - Security Advisory

Overview
Updated Images

Synopsis

Red Hat OpenShift Dev Spaces 3.22.1 Release.

Type/Severity

Security Advisory: Important

Topic

Red Hat OpenShift Dev Spaces 3.22.1 has been released.

Description

This release addresses CVE-2025-12548 'Eclipse Che — unauthenticated RCE and secret exfiltration via TCP/3333'.

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258

Fixes

(none)

CVEs

CVE-2025-12548

References

amd64

registry.redhat.io/devspaces/code-rhel9@sha256:e3945f59779f919af98216d0e8424a96a2c8b89bcce06c306adf2b491c061b15

registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:5c9b486f75808ed8d4c75062d11eb3692a6e6c7b476ee47ab7c6cba943cd2596

s390x

registry.redhat.io/devspaces/code-rhel9@sha256:e617fc6d1cf09cc3a27898b278ddb0c00f3e9d619f93c927e71c9b4a3a3cdf36

ppc64le

registry.redhat.io/devspaces/code-rhel9@sha256:440ace081a499e93a4966ebfcf1e38302a66e32bea74876db994d71cd3c29572

arm64

registry.redhat.io/devspaces/code-rhel9@sha256:3de7dd8077a9201eb7ff56c340629184773d6c06de9d6e083e13c5b51a82009c

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation