Issued:

2026-04-30

Updated:

2026-04-30

RHSA-2026:12279 - Red Hat OpenShift Data Foundation 4.19.15 security, enhancement & bug fix update

Synopsis

Red Hat OpenShift Data Foundation 4.19.15 security, enhancement & bug fix update

Type/Severity

Security Advisory Important

Topic

Red Hat OpenShift Data Foundation 4.19.15 security, enhancement & bug fix update

Description

Red Hat OpenShift Data Foundation 4.19.15 security, enhancement & bug fix update

FIXED BUGS:

DFBUGS-6345: RHODF 4.19.15 DFBUGS-5942: Backport to odf-4.19.z [External Mode]: noobaa-default-backing-store is in creating state due to "CheckExternalConnection Status=UNKNOWN_FAILURE Error=SELF_SIGNED_CERT_IN_CHAIN" DFBUGS-5819: [Backport to odf-4.19.z] [IBM_Support][Fusion HCI]"storageclient-xxxxx-status-reporter job" doesn't inherits the tolerations defined in "ocs-client-operator-controller-manager" deployment DFBUGS-5800: [Backport to odf-4.19.z] must-gather causes default RGW pools to be created and PGs to be stuck at 1 DFBUGS-4440: [4.19][ROSA HCP][UI]Bad gateway on Storage System creation wizard

CVEs:

CVE-2026-34986 CVE-2025-61726 CVE-2026-33186 CVE-2025-61729 CVE-2026-4800 CVE-2025-58183 CVE-2026-33036

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.19/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf

Affected Products

Fixes

(none)

CVEs

• CVE-2025-58183
• CVE-2025-61726
• CVE-2025-61729
• CVE-2026-33036
• CVE-2026-33186
• CVE-2026-34986
• CVE-2026-4800

References

• https://access.redhat.com/security/updates/classification/

Additional information

• The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at Security Contacts and Procedures.
• Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.