cert-manager
v1.18.6Securitycert-manager v1.18.6 is a security-focused patch release primarily addressing CVE-2025-68121 through Go runtime updates, with no functional changes to certificate management operations.
securityUpdate to v1.18.6 for CVE-2025-68121 mitigation
This release patches a Go runtime vulnerability (CVE-2025-68121) that could affect cert-manager security. Plan an upgrade within your standard maintenance window as this is a drop-in replacement with no configuration changes required. Test in non-production first, then roll out to production clusters.
enhancementSafe upgrade path for production workloads
Since this is purely a security patch with no functional changes, you can upgrade with confidence using your existing deployment processes. The update maintains full backward compatibility, making it suitable for automated deployment pipelines without additional testing overhead.
Key changes (4)
- Go runtime updated to address CVE-2025-68121 security vulnerability
- CVE-2026-24051 left unpatched as it only affects macOS environments
- Pure security patch with no breaking changes or new features
- Maintains compatibility with existing cert-manager deployments