What is the severity of RHSA-2025:1333?

The severity of RHSA-2025:1333 is classified as moderate.

How do I fix RHSA-2025:1333?

To fix RHSA-2025:1333, you should update your Red Hat Gatekeeper to version 3.14.3 or later.

What components are affected by RHSA-2025:1333?

RHSA-2025:1333 affects the Red Hat Gatekeeper product in version prior to 3.14.3.

What changes does RHSA-2025:1333 introduce?

RHSA-2025:1333 allows users to specify a 'containerArguments' list for audit and webhook configurations.

What should I do if I cannot update to version 3.14.3 for RHSA-2025:1333?

If you cannot update to version 3.14.3, consider reviewing your configurations and implementing any available workarounds for this vulnerability.

Vulnerability/
RHSA-2025:1333

high

11/2/2025

RHSA-2025:1333: Important: Gatekeeper v3.14.3

First published: Tue Feb 11 2025(Updated: )

Gatekeeper v3.14.3 Starting in v3.14.3, users can specify a `containerArguments` list of names and values for both the audit and webhook configurations to be passed to the respective deployment. These will be ignored if the argument has already been set by the operator or specifies an argument listed in the deny list. Starting in v3.14.3, the following namespaces are exempt from admission control: <li> kube-*</li> <li> multicluster-engine</li> <li> hypershift</li> <li> hive</li> <li> rhacs-operator</li> <li> open-cluster-*</li> <li> openshift-*</li> To disable the default exempt namespaces, set the namespaces you want on the object. Security fix(es): <li> golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback might cause authorization bypass in golang.org/x/crypto (CVE-2024-45337)</li> <li> golang.org/x/net/html: Non-linear parsing of case-insensitive content in</li> golang.org/x/net/html (CVE-2024-45338) Additional Release Notes: <li> v3.14.0 <a href="https://github.com/open-policy-agent/gatekeeper/releases/tag/v3.14.0" target="_blank">https://github.com/open-policy-agent/gatekeeper/releases/tag/v3.14.0</a></li> <li> v3.14.1 <a href="https://github.com/open-policy-agent/gatekeeper/releases/tag/v3.14.1" target="_blank">https://github.com/open-policy-agent/gatekeeper/releases/tag/v3.14.1</a></li> <li> v3.14.2 <a href="https://github.com/open-policy-agent/gatekeeper/releases/tag/v3.14.2" target="_blank">https://github.com/open-policy-agent/gatekeeper/releases/tag/v3.14.2</a></li>

Affected Software	Affected Version	How to fix
Red Hat Gatekeeper

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2025:1333?
The severity of RHSA-2025:1333 is classified as moderate.
How do I fix RHSA-2025:1333?
To fix RHSA-2025:1333, you should update your Red Hat Gatekeeper to version 3.14.3 or later.
What components are affected by RHSA-2025:1333?
RHSA-2025:1333 affects the Red Hat Gatekeeper product in version prior to 3.14.3.
What changes does RHSA-2025:1333 introduce?
RHSA-2025:1333 allows users to specify a 'containerArguments' list for audit and webhook configurations.
What should I do if I cannot update to version 3.14.3 for RHSA-2025:1333?
If you cannot update to version 3.14.3, consider reviewing your configurations and implementing any available workarounds for this vulnerability.

agent/severity
agent/source
agent/type
collector/redhat-errata-latest
source/Red Hat
anchor-id/RHSA-2025:1333
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
collector/redhat-errata
agent/remedy
agent/title
agent/references
agent/last-modified-date
agent/first-publish-date
agent/description
agent/tags
agent/event
vendor/red hat
canonical/red hat gatekeeper

Frequently Asked Questions

What is the severity of RHSA-2025:1333?
The severity of RHSA-2025:1333 is classified as moderate.
How do I fix RHSA-2025:1333?
To fix RHSA-2025:1333, you should update your Red Hat Gatekeeper to version 3.14.3 or later.
What components are affected by RHSA-2025:1333?
RHSA-2025:1333 affects the Red Hat Gatekeeper product in version prior to 3.14.3.
What changes does RHSA-2025:1333 introduce?
RHSA-2025:1333 allows users to specify a 'containerArguments' list for audit and webhook configurations.
What should I do if I cannot update to version 3.14.3 for RHSA-2025:1333?
If you cannot update to version 3.14.3, consider reviewing your configurations and implementing any available workarounds for this vulnerability.

RHSA-2025:1333: Important: Gatekeeper v3.14.3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2025:1333?

How do I fix RHSA-2025:1333?

What components are affected by RHSA-2025:1333?

What changes does RHSA-2025:1333 introduce?

What should I do if I cannot update to version 3.14.3 for RHSA-2025:1333?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of RHSA-2025:1333?

How do I fix RHSA-2025:1333?

What components are affected by RHSA-2025:1333?

What changes does RHSA-2025:1333 introduce?

What should I do if I cannot update to version 3.14.3 for RHSA-2025:1333?