Red Hat Product Errata RHSA-2026:2844 - Security Advisory
Issued:
2026-02-17
Updated:
2026-02-17

RHSA-2026:2844 - Security Advisory

Synopsis

Red Hat OpenShift Dev Spaces 3.26.1 Release.

Type/Severity

Security Advisory: Important

Topic

Red Hat OpenShift Dev Spaces 3.26.1 has been released.

Description

3.26.1 includes CVE fixes for CVE-2025-15467, CVE-2025-6176, CVE-2026-1761, CVE-2026-0719, CVE-2025-61732, and CVE-2025-61726.
Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development.
The 3.26 release is based on Eclipse Che 7.113 and uses the DevWorkspace engine to provide support for workspaces based on devfile v2.1 and v2.2.
Users still using the v1 standard should migrate as soon as possible.
https://devfile.io/docs/2.2.0/migrating-to-devfile-v2 Dev Spaces supports OpenShift EUS releases v4.16 and higher. Users are expected to update to supported OpenShift releases in order to continue to get Dev Spaces updates.
https://access.redhat.com/support/policy/updates/openshift#crw

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258

Fixes

(none)

amd64

registry.redhat.io/devspaces/code-rhel9@sha256:d93b78cc40286233dd48bf7bb91eab892329bb56367c03e4e2cf36e565917209
registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e81bba6aea603106046eaf3196d785d1ae63eb82b8b2d5799c2e8757ca30fb4b
registry.redhat.io/devspaces/configbump-rhel9@sha256:2dd449320ffd135b13cc7a43392f8be402c6b21677e949b6cb23d90c25b2af27
registry.redhat.io/devspaces/dashboard-rhel9@sha256:48de995db52924f4a20fc4c62c18a62223b3ef05ac5b5008dcb3628a4ee2767e
registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8704addd93ca4fbbf4a585084775de2fe496e7641b1406a426d29e107d86119c
registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:f13b292f3ab98895a8d07f4b4637af2c8fe0b45dd4609e3a2a2548b9dfb239d1
registry.redhat.io/devspaces/machineexec-rhel9@sha256:e724671480f0db043ff01c510cf3665833976806b3fb3fe64c4f186c3d445e7c
registry.redhat.io/devspaces/openvsx-rhel9@sha256:619c10386e0224e5228876a434c5b8d78d251bc383e2a9491503d6ceddd33c96
registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:7ca3cba246b8d1163fcbbb2d4798a27b5e123f36b5155e0c563747316f09b09f
registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:1da81db973a6033fbe12a59e877335bf194ec4563b61e530a44326915518f788
registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:25de67b5c2c60597173d977b2a09ecd14a9b2d60c4fd24ac0c8bf3c1ac6c000e
registry.redhat.io/devspaces/server-rhel9@sha256:049c2ef7242b5ba8f80c623fb9d3a1577ade9470547119d45e5dbe1c6889b097
registry.redhat.io/devspaces/traefik-rhel9@sha256:ccedf18e442831008f1c63721c6bf536436af0024279151044dd2d8c5e87f684
registry.redhat.io/devspaces/udi-rhel9@sha256:90f6995edd69f00118cad45ab7c6d4683a99c2de2b3202f017d108cd4aadccc1

s390x

registry.redhat.io/devspaces/code-rhel9@sha256:a03a86747f6191a55ba5a95383124c93fcbba2b137da04fe6b9508a2e54a2a86
registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a9a3ee20941be2f803fc3d5ac9f14ebdc4bea275927f56696aaf9ba8b4900c74
registry.redhat.io/devspaces/configbump-rhel9@sha256:ffdb6bd87cb727dd99df7a9b3c160bd26fc113957bb22dc442cd38ba6b56d485
registry.redhat.io/devspaces/dashboard-rhel9@sha256:20b0660092b3a3c069c06aae34f3306bcd655d58e33f7b8ce168aa3f21ccfef1
registry.redhat.io/devspaces/imagepuller-rhel9@sha256:24e0cccde7ea62cc4371acaa567e3e180c01941fa35844088bc73a4b27e5281e
registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:b503ab30512cc9bf3cfa89f5a8b09a591b038f61c22d1b2777477f40bbdbec0b
registry.redhat.io/devspaces/machineexec-rhel9@sha256:3d277b876221d34650e2e7dd6368fd0892f9f535424c77ff1219df36c3972939
registry.redhat.io/devspaces/openvsx-rhel9@sha256:d37e4c1f6f9bcebfb5ef805284b343d98d6e742adb589ade746321eade5863b4
registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c2c57991cc8bdda2882836401980b05d81bb254d8f6002cc345fbb985e43c258
registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:26dd9fb71bfad01a9a62e5cd83768146120efea71107c89cd8ce3361e7c73b4b
registry.redhat.io/devspaces/server-rhel9@sha256:506a7942298ea0fe39bd7cc794b9b8c374d91b38c194af3f8ec05b2d0b008205
registry.redhat.io/devspaces/traefik-rhel9@sha256:38f746ee7214cd30a440b754f9fa6d72e3bd802eb868e13eec139fb643e20dbc
registry.redhat.io/devspaces/udi-rhel9@sha256:1a9e80f609eaf33cc252400a5e4371096dc549cbf9364e95dc6f38144fdb8bdf

ppc64le

registry.redhat.io/devspaces/code-rhel9@sha256:07b5aa25be771e9205eeec6b99eba468e856fe613ce1f14f56fe1a1987bebff1
registry.redhat.io/devspaces/code-sshd-rhel9@sha256:6c0618a262457b1e209870c64225082c01200807b2ae338063425d3aa2f96fcc
registry.redhat.io/devspaces/configbump-rhel9@sha256:b01aa02ff03139120d3316da77ec4a0b4423c3c5561a3a1113732eedabe9aecd
registry.redhat.io/devspaces/dashboard-rhel9@sha256:cfba0a1117e348ee5252289beaca5affdff3dc4a0e4cfc87f7b3ed20db16c1db
registry.redhat.io/devspaces/imagepuller-rhel9@sha256:0265615072824fe889c5bd3d1f40d8027c38236718ec3c994bc327583e4e4885
registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:a644a873fe159eece3e6ce341eceb7b7a4fe62f5e835e604aaf8574735d960ca
registry.redhat.io/devspaces/machineexec-rhel9@sha256:ee21dfe4d927a49196e81782875e88bd564c48c620ec07444a07387f9e4b6889
registry.redhat.io/devspaces/openvsx-rhel9@sha256:c5e4373203140944e469e0306311911cde0231b24d256bb9c65e3150558efd3c
registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:b151b96c8187c820c6e91e6bc2a3048839e5b3dc883cec69bb04e46a875c6f74
registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d8203704e7ee44c7937b1c81166c63c002a8a09de0e38b04a3cc1e60ad94adcf
registry.redhat.io/devspaces/server-rhel9@sha256:21a2cb587fce8d547f8cc31c97243bbf2bf30e8cccb64a772d60df40c909f221
registry.redhat.io/devspaces/traefik-rhel9@sha256:8ea5bdee69a073ae7a741c6fe6d770d2ed87b0c0143885fca06a49d2a0036612
registry.redhat.io/devspaces/udi-rhel9@sha256:bb9f0ee4fa785a4c3d4a3f6f5e177f4a41350ccef40bc53bfeedee2d52061472

arm64

registry.redhat.io/devspaces/code-rhel9@sha256:080f5c8c0036ff152960bace14a46d838aaab50d005b02741ba26d08fc040249
registry.redhat.io/devspaces/code-sshd-rhel9@sha256:4aff583803de7ebd055aa820c3167cf60fd65c4c5192cb86af65803c552871ec
registry.redhat.io/devspaces/configbump-rhel9@sha256:46e17c423ab487e330913b8f7addd7f4625e5f74385104e5856c01f78ef31d09
registry.redhat.io/devspaces/dashboard-rhel9@sha256:a67220640f3cbaea11bc4e47a36fc852152620bc50a81cdf155c56374b2cc546
registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d198c71d91965b65f49eea8497a7574cb8d7a9599c54fa95d8d8cd12f60c6c81
registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:cb7dfb0bcf96a8f8ddeea922aa9be138b734b085267e2ce6a89390a51349f57d
registry.redhat.io/devspaces/machineexec-rhel9@sha256:75097ff55bd9c180931c8db38709e70e3909fa17e2a7ed0949ffe02de01a468a
registry.redhat.io/devspaces/openvsx-rhel9@sha256:b69f3ac7efeae55c89036c589536b264f1a1e2431d120ea625c1045fc9d7de79
registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:740fb67de0e874261cf456ab601b9c5a2de47912d04375172c36ee2110c54594
registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:48d31aa446fe1033ad770ed74442053bcee5102035a9c618fb81cde1743a9692
registry.redhat.io/devspaces/server-rhel9@sha256:967d1fa6c419ed553a04addc4ca15b80ec83dc5c6899194514324eb4c79afa68
registry.redhat.io/devspaces/traefik-rhel9@sha256:7663c30c4bd9750038838a7131b680130e85f4a8d5aa41741ce4aecab7bede8b
registry.redhat.io/devspaces/udi-rhel9@sha256:f3428de9e2ede29629694ab02ff8ca25543f3bc8a7300d1de95c00724e31c4b5

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.