- Issued:
- 2026-01-22
- Updated:
- 2026-01-22
RHSA-2026:1038 - Security Advisory
Synopsis
cert-manager Operator for Red Hat OpenShift 1.18.1
Type/Severity
Security Advisory: Important
Topic
cert-manager Operator for Red Hat OpenShift 1.18.1
Description
The cert-manager Operator for Red Hat OpenShift builds on top of Kubernetes, introducing certificate authorities
and certificates as first-class resource types in the Kubernetes API. This makes it possible to provide
certificates-as-a-service to developers working within your Kubernetes cluster.
Solution
Before applying this update, make sure all previously released errata relevant to your system have been applied.
The steps to apply the upgraded images are different depending on the installation plan approval policy you used
when installing the cert-manager Operator for Red Hat OpenShift.
- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a
new version of the Operator. No further action is required to upgrade. This is the default setting.
- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.
See https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional
information.
Fixes
(none)amd64
| registry.redhat.io/cert-manager/cert-manager-istio-csr-rhel9@sha256:e64804e94fe3781b7d371097e53749867a2b4b1783ada1660b5363e9df3cdb44 |
s390x
| registry.redhat.io/cert-manager/cert-manager-istio-csr-rhel9@sha256:ac74ade1f4712f7c7e17b3532ec5ecaed9aec87cc2a0c4801c7661739de4fd9b |
ppc64le
| registry.redhat.io/cert-manager/cert-manager-istio-csr-rhel9@sha256:0a03ffd13222ba450598910b4b627757d10913831c5d197e0a510bf9c758ec0b |
arm64
| registry.redhat.io/cert-manager/cert-manager-istio-csr-rhel9@sha256:d41b8ace40ae0a4d240025acca6e0f3ef27b14c1d6c9d9d2e06ac95f6bac4c37 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
