RHSA-2026:21338 - Security Advisory

Topic

Red Hat Developer Hub 1.8.7 has been released.

Description

Red Hat Developer Hub (RHDH) is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.

Solution

For more about Red Hat Developer Hub, see References links

Affected Products

• Red Hat Developer Hub

Fixes

CVEs

• CVE-2026-32280
• CVE-2026-32281
• CVE-2026-32282
• CVE-2026-40895
• CVE-2026-41240
• CVE-2026-41242
• CVE-2026-41674
• CVE-2026-42033
• CVE-2026-42035
• CVE-2026-42039
• CVE-2026-42041
• CVE-2026-42043
• CVE-2026-42044
• CVE-2026-6321

References

• https://access.redhat.com/security/updates/classification/
• https://catalog.redhat.com/search?gs&searchType=containers&q=rhdh
• https://developers.redhat.com/rhdh/overview
• https://docs.redhat.com/en/documentation/red_hat_developer_hub
• https://issues.redhat.com/browse/RHIDP-13087
• https://issues.redhat.com/browse/RHIDP-13114
• https://issues.redhat.com/browse/RHIDP-13271
• https://issues.redhat.com/browse/RHIDP-13301
• https://issues.redhat.com/browse/RHIDP-13314
• https://issues.redhat.com/browse/RHIDP-13316
• https://issues.redhat.com/browse/RHIDP-13407
• https://issues.redhat.com/browse/RHIDP-13445
• https://issues.redhat.com/browse/RHIDP-13450
• https://issues.redhat.com/browse/RHIDP-13456
• https://issues.redhat.com/browse/RHIDP-13463
• https://issues.redhat.com/browse/RHIDP-13486
• https://issues.redhat.com/browse/RHIDP-13589
• https://issues.redhat.com/browse/RHIDP-13643