Product Release Advisory - VMware Tanzu RabbitMQ on Kubernetes 3.13.10, 4.0.15, 4.1.4, 4.2.0
Security Advisory
|
Advisory ID: |
TNZ-2025-0136 |
|
Severity: |
High |
|
Issue Date: |
November 3, 2025 |
|
Updated on: |
November 3, 2025 |
|
Synopsis |
Impacted on VMware Tanzu RabbitMQ on Kubernetes v3.13.10, v4.0.15 and v4.1.4 and previous versions. cert-manager is upgraded to v1.19.0 in the latest set of release of RabbitMQ K8 - v3.13.11, v4.0.16, v4.1.5 and v4.2.0 |
Product Version Release Advisory
- VMware Tanzu RabbitMQ on Kubernetes 3.13.10
- VMware Tanzu RabbitMQ on Kubernetes 4.0.15
- VMware Tanzu RabbitMQ on Kubernetes 4.1.4
- VMware Tanzu RabbitMQ on Kubernetes 4.2.0
Security Fixes
This release has the following security fixes, listed by component and area.
|
Component |
Vulnerabilities Resolved |
|
Go standard library |
CVE-2025-47907 (high) CVE-2025-47906 (medium) |
|
Go toolchain |
CVE-2025-4674 (high)
|
History
2025-11-03: Initial vulnerability report published.
Contact
E-mail: [email protected]
VMware Tanzu Security Advisories: https://tanzu.vmware.com/security