Issued:: 2025-12-04
Updated:: 2025-12-04

RHSA-2025:22784 - Security Advisory

Overview
Updated Images

Synopsis

Moderate: Submariner v0.22 security fixes and container updates

Type/Severity

Security Advisory: Moderate

Topic

Submariner v0.22 General Availability release images, which provide enhancements, security fixes, and updated container images.

Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE links in the References section.
Red Hat Advanced Cluster Management for Kubernetes v2.15

Description

Submariner is a Kubernetes operator that enables cross-cluster connectivity for services and pods,
implementing KEP-1645 (Multi-Cluster Services API). After deploying the Submariner operator,
it can enable direct networking between pods and services across different Kubernetes clusters.

For more information about Submariner, see the Submariner open source community website at: https://submariner.io/.

Solution

For release note details, see the upstream Submariner release notes:

https://submariner.io/community/releases/

Downstream-specific issues resolved:

ACM-18625

For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:

https://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.15/

Fixes

(none)

CVEs

CVE-2025-59530

References

https://access.redhat.com/security/updates/classification/

amd64

registry.redhat.io/rhacm2/lighthouse-agent-rhel9@sha256:fa636c3568f8e06bae8e929d0f2f5c0fe946ea9edd4a1450c9e4a40b9504f226

registry.redhat.io/rhacm2/lighthouse-coredns-rhel9@sha256:18b44b16fe949d6581538d3fdce3e6fe695665009bde0785fa3ce6b73013b73e

registry.redhat.io/rhacm2/nettest-rhel9@sha256:e642c43f0ccd6f37a30457f7056fd6900329574d490ee34c1aec214eb8f062ea

registry.redhat.io/rhacm2/subctl-rhel9@sha256:f8a5da344035ab1f52a99ce7c6507dbb4b659ccdae86111f447dfde293493c68

registry.redhat.io/rhacm2/submariner-operator-bundle@sha256:bb851aac8a0b44e3322da36c4349723e564ff8ce489210859210eddcb8f3c425

registry.redhat.io/rhacm2/submariner-gateway-rhel9@sha256:2fc9641d4fbb7e72d26c430f40df019be653d82b701fc396f323a4c75bf6590a

registry.redhat.io/rhacm2/submariner-globalnet-rhel9@sha256:1365c68e5506b77c6efe20144f07bea8203ee69c7e75f84fce2850e8c29fbcf1

registry.redhat.io/rhacm2/submariner-rhel9-operator@sha256:061bd1844f1cf24d43387986e441063d8666932f1a538d2d5d372ad467f95c43

registry.redhat.io/rhacm2/submariner-route-agent-rhel9@sha256:b8a68b8899fd07f8c7e9116ce1757f9adad12c8e93a5f64da0b6ba22c758d1af

ppc64le

registry.redhat.io/rhacm2/lighthouse-agent-rhel9@sha256:090e0f16922f120fd77bab93cf939103214e2999777e87c1211013a2990a1b61

registry.redhat.io/rhacm2/lighthouse-coredns-rhel9@sha256:e7c3aa133fb2e5c05ffddc0045014232cedc0df9a2686b4df5dc712cbd8664c7

registry.redhat.io/rhacm2/subctl-rhel9@sha256:c234817a3f793465a2c6603c30aecc031968fb5e9ca7d5c953c90f4fc34ad6ad

registry.redhat.io/rhacm2/submariner-globalnet-rhel9@sha256:d18d9145d647ddd47aaaf08d792cce3b1b6db27e4201fae494b3d06d027283ca

registry.redhat.io/rhacm2/submariner-rhel9-operator@sha256:953d94d12043a1a44249e9530b273a1d83463ef7fe87836b3d99a96ae173dd1d

s390x

registry.redhat.io/rhacm2/lighthouse-agent-rhel9@sha256:34f9116699e89ce4e4e61a183197bbc1703e1caebe8c42133ce7663e929b06dc

registry.redhat.io/rhacm2/lighthouse-coredns-rhel9@sha256:ae26db0807c313658b98244c1fe399fbaa6207e7e749be952a9391ecfea2c88c

registry.redhat.io/rhacm2/subctl-rhel9@sha256:859c79b8ed5cc0c2cd08296a0e97c9b76ac177f8b6514854b82699202abbb8d0

registry.redhat.io/rhacm2/submariner-globalnet-rhel9@sha256:ae1d926dc9f0a8867c9298ff079cb3adc8c9f7d03023c48f51f95fd21feb5a49

registry.redhat.io/rhacm2/submariner-rhel9-operator@sha256:7632479daaab6738e0795a1714f6cf2fbf7e05d9727d5260651e473b6b27aaf1

arm64

registry.redhat.io/rhacm2/lighthouse-agent-rhel9@sha256:840ba88bd309c24b62b247a061c451c51636db5c20117a001b6a7bd47d62ce14

registry.redhat.io/rhacm2/lighthouse-coredns-rhel9@sha256:61c07e4f0d9a89434bc7bfa540af63f60ab11ef984475c61a6358f808e33b84f

registry.redhat.io/rhacm2/nettest-rhel9@sha256:89c48c19711ee7ac518ff484dcac0c8a74d6c3afcda70cdd8deae2e7bafe909b

registry.redhat.io/rhacm2/subctl-rhel9@sha256:ea4f9e4dea3e043a550a87b105fc6792e2e201fc3dc59b07b1411652ad0438ae

registry.redhat.io/rhacm2/submariner-gateway-rhel9@sha256:4c16776f78009d170a45571663a33ded28d8fc91a4461a7f841052fa8c16c3ce

registry.redhat.io/rhacm2/submariner-globalnet-rhel9@sha256:5f78c0b201f87b737ae09c1305e21f0525f151d8508e36ddca394a1e9adc1b5d

registry.redhat.io/rhacm2/submariner-rhel9-operator@sha256:65b83ad740bf6ff468e8f60dcd0d0fbe5deee7c15758e350b0b222bb846e5e78

registry.redhat.io/rhacm2/submariner-route-agent-rhel9@sha256:93abd49808ae61f715ee2723f7e90afd5c951ea2d84753b5fc5612639d983a57

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation