- Issued:
- 2018-07-31
- Updated:
- 2018-07-31
RHBA-2018:2318 - Bug Fix Advisory
Synopsis
Red Hat Virtualization Manager (ovirt-engine) 4.2.5
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update is now available for Red Hat Virtualization Manager.
Description
The Red Hat Virtualization Manager is a centralized management platform that allows system administrators to view and manage virtual machines. The Manager provides a comprehensive range of features including search capabilities, resource management, live migrations, and virtual infrastructure provisioning.
The Manager is a JBoss Application Server application that provides several interfaces for accessing and interacting with the virtual environment, including an Administration Portal, a User Portal, and a Representational State Transfer (REST) Application Programming Interface (API).
Changes to the ovirt-engine component:
- There were inconsistencies in the following internal configuration options:
- HotPlugCpuSupported
- HotUnplugCpuSupported
- HotPlugMemorySupported
- HotUnplugMemorySupported
- IsMigrationSupported
- IsMemorySnapshotSupported
- IsSuspendSupported
- ClusterRequiredRngSourcesDefault
If you are having issues with these features, upgrade to Red Hat Virtualization 4.2.5+ to resolve the problem. (BZ#1605076)
- Previously, ovirt-provider-ovn configuration generated by engine-setup used the Manager's certificate authority in `/etc/pki/ovirt-engine/ca.pem` to verify the Manager's certificate. If the administrator replaced the TLS/SSL certificate, they also had to update the path to the new certificate authority file manually, in `/etc/ovirt-provider-ovn/conf.d/10-setup-ovirt-provider-ovn.conf`.
Now, ovirt-provider-ovn config generated by engine-setup uses the webserver certificate authority in `/etc/pki/ovirt-engine/apache-ca.pem` to verify the Manager's certificate.
For new installations, restarting the ovirt-provider-ovn service updates the replaced certificate.
For updated installations, you must manually check that `ovirt-ca-file` in `/etc/ovirt-provider-ovn/conf.d/10-setup-ovirt-provider-ovn.conf` points to `/etc/pki/ovirt-engine/apache-ca.pem`. (BZ#1607149)
- This update adds a feature to control pop up notifications. Once 3 or more notifications are showing, "Dismiss" and "Do not disturb" buttons will appear that allow the user to silence notifications. (BZ#1608362)
- This update adjusts virtual machine video RAM settings to provide enough RAM for any modern Linux guest operating system, not just RHEL 7. (BZ#1605198)
- Previously, when a virtual machine's cluster level was updated (for example, from 4.1 to 4.2), ejected CD-ROM devices could be lost, and the virtual machine was sometimes unable to use CDs anymore. This has now been fixed so that CD-ROM devices remain intact during upgrades regardless of whether they are in use or ejected. (BZ#1596234)
Changes to the rhvm-setup-plugins component:
- This update adds support for IBM POWER9 hypervisors with RHEL-ALT and POWER9 guests. It also adds support for POWER8 guests on a POWER9 hypervisor and live migration of POWER8 guests between POWER8 and POWER9 hypervisors. (BZ#1592320)
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Virtualization Manager 4.2 x86_64
Fixes
- BZ - 1584993 - [downstream clone - 4.2.5] The Active VM snapshots table entry does not exist for a specific VM
- BZ - 1592320 - [downstream clone - 4.2.5] add POWER 9 to the 4.2 cluster level
- BZ - 1596234 - [downstream clone - 4.2.5] Virtual machine lost its cdrom device
- BZ - 1600595 - [downstream clone - 4.2.5] add AMD EPYC SSBD CPU
- BZ - 1601514 - [downstream clone - 4.2.5] [RFE] Changes that require Virtual Machine restart: name
- BZ - 1605076 - [downstream clone - 4.2.5] Config values inconsistency between RHV versions
- BZ - 1605133 - [downstream clone - 4.2.5] Skipped power management operation has misleading logs
- BZ - 1605198 - [downstream clone - 4.2.5] Hit Xorg Segmentation fault while installing rhel7.4 release guest in RHV 4.2 with QXL
- BZ - 1605206 - [downstream clone - 4.2.5] JsonMappingException in businessentities.storage.DiskImage prevents access to Engine
- BZ - 1607149 - [downstream clone - 4.2.5] OVN network synchronization not working after replacing the RHV-M tls certificate with a commercial one
- BZ - 1608347 - [downstream clone - 4.2.5] Virtual Machines search box is case sensitive post upgrading to RHV 4.2
- BZ - 1608348 - [downstream clone - 4.2.5] Live merge fails on the RHV-M Engine with "Invalid UUID string: payload" followed by exception.
- BZ - 1608362 - [downstream clone - 4.2.5] [RFE] Disable Event notification popup in admin portal
CVEs
(none)
References
(none)
Red Hat Virtualization Manager 4.2
SRPM | |
---|---|
ovirt-engine-4.2.5.2-0.1.el7ev.src.rpm | SHA-256: 97b74d5d71d8b7304463ab26047306589a67ab30717c7c875e8b53955eade7e6 |
x86_64 | |
ovirt-engine-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 3704702859878b5ddc0dbe103868182b643569f334ffa4b6d8e22f740cc79534 |
ovirt-engine-backend-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: b8631c7ae6c61c2793ddd8b23e95bc952220396bb804bc39b91b573a796b1afa |
ovirt-engine-dbscripts-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 1c77e760a2820c1ba11602276feef7001c639bdfec9367925a0e4b2f688c469b |
ovirt-engine-extensions-api-impl-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 4f1d1ac83fd1b5eeba7dae32f6b577594d34607cae6d371eb03851dd53cb6299 |
ovirt-engine-extensions-api-impl-javadoc-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 623b330165b6e1c7ab4334ab1604f05abb76a096590995311e59e872c66a175d |
ovirt-engine-health-check-bundler-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 483a292d7d68c121bcbea1ac55d5b815d53aa16ab3a86c67e5d0a2e203f9f962 |
ovirt-engine-lib-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 848fdb50b8cc926b44e6ab945af77674b64e76cf6c2aa0f8f24938e00393ad0b |
ovirt-engine-restapi-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 91c655aa41eca10a0e79bb07fb57f7c55c582b31b6af7a8619255ccb38908461 |
ovirt-engine-setup-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 7fc5cf1dd7643ba1d38d8252330cba3c1e7047ab33bd0f8192106dc8246a4b94 |
ovirt-engine-setup-base-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 13081d6be68d7e4639bbfd76bcc3c75bb553703d8ab87d6184ad4076a6f78d9d |
ovirt-engine-setup-plugin-ovirt-engine-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 9a3cc985232ec9188491bba83942f8261940e64762f2af4f67c11f5fc6c1f87a |
ovirt-engine-setup-plugin-ovirt-engine-common-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 232f3344225a9d9f33cd3db792110e1652ec20121b1222c4d08caffc76578542 |
ovirt-engine-setup-plugin-vmconsole-proxy-helper-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: df723123c20fe63d0f4ea68675b284e4bd73242835e15664a5e25358e90906e2 |
ovirt-engine-setup-plugin-websocket-proxy-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 0fb99f97e19f89eeeefb665eb7a1f0427c46bdbeefc312af8f2e2332d36a1ba3 |
ovirt-engine-tools-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 3d95b90103cff6f9003237aa556ba45f158c971c17233bfda739078152c6a81f |
ovirt-engine-tools-backup-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: e4bf6277a10062493fe77eed8e88bf92cc2280ea7010fb323071659e59ad9295 |
ovirt-engine-vmconsole-proxy-helper-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 7534c6efc3591775b5fb520276c0342fa8c2c3a26964ed7bb76c70fb48c312e2 |
ovirt-engine-webadmin-portal-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 563faf96deb3219a98904d94cf346b419c0a8d99b1e065ee6115aa9bd5ddbff6 |
ovirt-engine-websocket-proxy-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: 021064f8d048ed1d4dccb10002070ed873d222965d48724ab726bf3fb3724305 |
rhvm-4.2.5.2-0.1.el7ev.noarch.rpm | SHA-256: f9c03429c06f431f18778ea834bff0c77f476ebbaca32be98e801015fc56b985 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.