Red Hat Product Errata RHBA-2018:2318 - Bug Fix Advisory
Issued:
2018-07-31
Updated:
2018-07-31

RHBA-2018:2318 - Bug Fix Advisory

Synopsis

Red Hat Virtualization Manager (ovirt-engine) 4.2.5

Type/Severity

Bug Fix Advisory

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update is now available for Red Hat Virtualization Manager.

Description

The Red Hat Virtualization Manager is a centralized management platform that allows system administrators to view and manage virtual machines. The Manager provides a comprehensive range of features including search capabilities, resource management, live migrations, and virtual infrastructure provisioning.

The Manager is a JBoss Application Server application that provides several interfaces for accessing and interacting with the virtual environment, including an Administration Portal, a User Portal, and a Representational State Transfer (REST) Application Programming Interface (API).

Changes to the ovirt-engine component:

  • There were inconsistencies in the following internal configuration options:
  • HotPlugCpuSupported
  • HotUnplugCpuSupported
  • HotPlugMemorySupported
  • HotUnplugMemorySupported
  • IsMigrationSupported
  • IsMemorySnapshotSupported
  • IsSuspendSupported
  • ClusterRequiredRngSourcesDefault

If you are having issues with these features, upgrade to Red Hat Virtualization 4.2.5+ to resolve the problem. (BZ#1605076)

  • Previously, ovirt-provider-ovn configuration generated by engine-setup used the Manager's certificate authority in `/etc/pki/ovirt-engine/ca.pem` to verify the Manager's certificate. If the administrator replaced the TLS/SSL certificate, they also had to update the path to the new certificate authority file manually, in `/etc/ovirt-provider-ovn/conf.d/10-setup-ovirt-provider-ovn.conf`.

Now, ovirt-provider-ovn config generated by engine-setup uses the webserver certificate authority in `/etc/pki/ovirt-engine/apache-ca.pem` to verify the Manager's certificate.

For new installations, restarting the ovirt-provider-ovn service updates the replaced certificate.
For updated installations, you must manually check that `ovirt-ca-file` in `/etc/ovirt-provider-ovn/conf.d/10-setup-ovirt-provider-ovn.conf` points to `/etc/pki/ovirt-engine/apache-ca.pem`. (BZ#1607149)

  • This update adds a feature to control pop up notifications. Once 3 or more notifications are showing, "Dismiss" and "Do not disturb" buttons will appear that allow the user to silence notifications. (BZ#1608362)
  • This update adjusts virtual machine video RAM settings to provide enough RAM for any modern Linux guest operating system, not just RHEL 7. (BZ#1605198)
  • Previously, when a virtual machine's cluster level was updated (for example, from 4.1 to 4.2), ejected CD-ROM devices could be lost, and the virtual machine was sometimes unable to use CDs anymore. This has now been fixed so that CD-ROM devices remain intact during upgrades regardless of whether they are in use or ejected. (BZ#1596234)

Changes to the rhvm-setup-plugins component:

  • This update adds support for IBM POWER9 hypervisors with RHEL-ALT and POWER9 guests. It also adds support for POWER8 guests on a POWER9 hypervisor and live migration of POWER8 guests between POWER8 and POWER9 hypervisors. (BZ#1592320)

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/2974891

Affected Products

  • Red Hat Virtualization Manager 4.2 x86_64

Fixes

  • BZ - 1584993 - [downstream clone - 4.2.5] The Active VM snapshots table entry does not exist for a specific VM
  • BZ - 1592320 - [downstream clone - 4.2.5] add POWER 9 to the 4.2 cluster level
  • BZ - 1596234 - [downstream clone - 4.2.5] Virtual machine lost its cdrom device
  • BZ - 1600595 - [downstream clone - 4.2.5] add AMD EPYC SSBD CPU
  • BZ - 1601514 - [downstream clone - 4.2.5] [RFE] Changes that require Virtual Machine restart: name
  • BZ - 1605076 - [downstream clone - 4.2.5] Config values inconsistency between RHV versions
  • BZ - 1605133 - [downstream clone - 4.2.5] Skipped power management operation has misleading logs
  • BZ - 1605198 - [downstream clone - 4.2.5] Hit Xorg Segmentation fault while installing rhel7.4 release guest in RHV 4.2 with QXL
  • BZ - 1605206 - [downstream clone - 4.2.5] JsonMappingException in businessentities.storage.DiskImage prevents access to Engine
  • BZ - 1607149 - [downstream clone - 4.2.5] OVN network synchronization not working after replacing the RHV-M tls certificate with a commercial one
  • BZ - 1608347 - [downstream clone - 4.2.5] Virtual Machines search box is case sensitive post upgrading to RHV 4.2
  • BZ - 1608348 - [downstream clone - 4.2.5] Live merge fails on the RHV-M Engine with "Invalid UUID string: payload" followed by exception.
  • BZ - 1608362 - [downstream clone - 4.2.5] [RFE] Disable Event notification popup in admin portal

CVEs

(none)

References

(none)

Red Hat Virtualization Manager 4.2

SRPM
ovirt-engine-4.2.5.2-0.1.el7ev.src.rpm SHA-256: 97b74d5d71d8b7304463ab26047306589a67ab30717c7c875e8b53955eade7e6
x86_64
ovirt-engine-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 3704702859878b5ddc0dbe103868182b643569f334ffa4b6d8e22f740cc79534
ovirt-engine-backend-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: b8631c7ae6c61c2793ddd8b23e95bc952220396bb804bc39b91b573a796b1afa
ovirt-engine-dbscripts-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 1c77e760a2820c1ba11602276feef7001c639bdfec9367925a0e4b2f688c469b
ovirt-engine-extensions-api-impl-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 4f1d1ac83fd1b5eeba7dae32f6b577594d34607cae6d371eb03851dd53cb6299
ovirt-engine-extensions-api-impl-javadoc-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 623b330165b6e1c7ab4334ab1604f05abb76a096590995311e59e872c66a175d
ovirt-engine-health-check-bundler-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 483a292d7d68c121bcbea1ac55d5b815d53aa16ab3a86c67e5d0a2e203f9f962
ovirt-engine-lib-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 848fdb50b8cc926b44e6ab945af77674b64e76cf6c2aa0f8f24938e00393ad0b
ovirt-engine-restapi-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 91c655aa41eca10a0e79bb07fb57f7c55c582b31b6af7a8619255ccb38908461
ovirt-engine-setup-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 7fc5cf1dd7643ba1d38d8252330cba3c1e7047ab33bd0f8192106dc8246a4b94
ovirt-engine-setup-base-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 13081d6be68d7e4639bbfd76bcc3c75bb553703d8ab87d6184ad4076a6f78d9d
ovirt-engine-setup-plugin-ovirt-engine-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 9a3cc985232ec9188491bba83942f8261940e64762f2af4f67c11f5fc6c1f87a
ovirt-engine-setup-plugin-ovirt-engine-common-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 232f3344225a9d9f33cd3db792110e1652ec20121b1222c4d08caffc76578542
ovirt-engine-setup-plugin-vmconsole-proxy-helper-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: df723123c20fe63d0f4ea68675b284e4bd73242835e15664a5e25358e90906e2
ovirt-engine-setup-plugin-websocket-proxy-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 0fb99f97e19f89eeeefb665eb7a1f0427c46bdbeefc312af8f2e2332d36a1ba3
ovirt-engine-tools-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 3d95b90103cff6f9003237aa556ba45f158c971c17233bfda739078152c6a81f
ovirt-engine-tools-backup-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: e4bf6277a10062493fe77eed8e88bf92cc2280ea7010fb323071659e59ad9295
ovirt-engine-vmconsole-proxy-helper-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 7534c6efc3591775b5fb520276c0342fa8c2c3a26964ed7bb76c70fb48c312e2
ovirt-engine-webadmin-portal-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 563faf96deb3219a98904d94cf346b419c0a8d99b1e065ee6115aa9bd5ddbff6
ovirt-engine-websocket-proxy-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: 021064f8d048ed1d4dccb10002070ed873d222965d48724ab726bf3fb3724305
rhvm-4.2.5.2-0.1.el7ev.noarch.rpm SHA-256: f9c03429c06f431f18778ea834bff0c77f476ebbaca32be98e801015fc56b985

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.