Red Hat Product Errata RHBA-2020:2713 - Bug Fix Advisory
Issued:
2020-06-29
Updated:
2020-06-29

RHBA-2020:2713 - Bug Fix Advisory

Synopsis

OpenShift Container Platform 4.4.10 bug fix update

Type/Severity

Bug Fix Advisory

Topic

Red Hat OpenShift Container Platform release 4.4.10 is now available with
updates to packages and images that fix several bugs.

Description

Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.

This advisory contains the container images for Red Hat OpenShift Container
Platform 4.4.10. See the following advisory for the RPM packages for this
release:

https://access.redhat.com/errata/RHBA-2020:2734

Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:

https://docs.openshift.com/container-platform/4.4/release_notes/ocp-4-4-release-notes.html

You may download the oc tool and use it to inspect release image metadata
as follows:

(For x86_64 architecture)

$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.4.10-x86_64

The image digest is sha256:0d1ffca302ae55d32574b38438c148d33c2a8a05c8daf97eeb13e9ab948174f7

(For s390x architecture)

$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.4.10-s390x

The image digest is sha256:847bc8745485e94e98ef84cc6922c8071ff9ac978ae1c9925ce0ffde9d3f140e

(For ppc64le architecture)

$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.4.10-ppc64le

The image digest is sha256:b044faf31274223ff99892a867bf814fca91f806c5b6766a7877b5a2f5d15a3c

All OpenShift Container Platform 4.4 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift Console
or the CLI oc command. Instructions for upgrading a cluster are available
at
https://docs.openshift.com/container-platform/4.4/updating/updating-cluster-between-minor.html#understanding-upgrade-channels_updating-cluster-between-minor.

Solution

For OpenShift Container Platform 4.4 see the following documentation, which
will be updated shortly for release 4.4.10, for important instructions on
how to upgrade your cluster and fully apply this asynchronous errata
update:

https://docs.openshift.com/container-platform/4.4/release_notes/ocp-4-4-release-notes.html

Details on how to access this content are available at
https://docs.openshift.com/container-platform/4.4/updating/updating-cluster-cli.html.

Affected Products

  • Red Hat OpenShift Container Platform 4.4 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.4 for RHEL 7 x86_64
  • Red Hat OpenShift Container Platform for Power 4.4 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for Power 4.4 for RHEL 7 ppc64le
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.4 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.4 for RHEL 7 s390x

Fixes

  • BZ - 1797800 - Deprecated command `operator-sdk generate openapi` in operator-sdk getting started document needs to be updated
  • BZ - 1800609 - On gcp cluster containers getting OOMKilled
  • BZ - 1803793 - Can't delete a non-existent baremetal host from the GUI
  • BZ - 1816485 - OpenShift OperatorHub kind missing client marker comment
  • BZ - 1816544 - [4.4] Forwarded header includes empty quoted proto-version parameter
  • BZ - 1816606 - MHC MaxUnhealthy string value can have unexpected behaviour
  • BZ - 1819770 - [4.4] openshift-controller-manager-operator/openshift-controller-manager endpoints are down on ipv6 cluster
  • BZ - 1820059 - Last navigation item needs more bottom padding
  • BZ - 1820492 - [ovirt] Cannot run openshift-install as a non-root user
  • BZ - 1824049 - click "Machine Config Pools" after mcp creation making page crash
  • BZ - 1825194 - `oc explain authentication.spec --api-version config.openshift.io/v1` still shows "The default is auth.openshift.io"
  • BZ - 1825208 - SR-IOV operator manifest typo observed in web console page
  • BZ - 1826372 - Invalid CatalogSourceConfig does not trigger alert that deprecated API is in use
  • BZ - 1827306 - Edit ClusterServiceVersion should not be a first class Action
  • BZ - 1827766 - non-existed service should display None same as the other empty fields on operator instance page
  • BZ - 1828955 - Upgrade Pipelines to TechPreview
  • BZ - 1829030 - Masthead dropdown items have irregular spacing
  • BZ - 1829568 - Pipeline Builder Misunderstands Task 'default' Empty Value
  • BZ - 1829580 - Add e2e test for stale condition DefaultSecurityContextConstraints_Mutated
  • BZ - 1829645 - cluster-etcd-operator: add relatedObjects for immediate creation by CVO
  • BZ - 1830160 - e2e-gcp-op: backport makefile fail fast
  • BZ - 1832839 - Work queue metrics from openshift-controller-manager missing
  • BZ - 1835939 - Operands related views are disappeared due to missing Operand's `displayName` field in the CSV
  • BZ - 1838083 - Ironic: Allows users to configure any non-link-local IPV6 address for the provisioning interface
  • BZ - 1839019 - Cannot edit deployment triggers
  • BZ - 1839738 - There are too many events generated by oVirt
  • BZ - 1840398 - Installed operator lost link of Operator Group on detail page
  • BZ - 1843678 - FailingOperator Alert present after CSV is successfully redeployed
  • BZ - 1844245 - ovnnode and ovnmaster requests are too high
  • BZ - 1844831 - [oVirt][Tests] skip network tests
  • BZ - 1845155 - local-storage-local-diskmaker and local-storage-local-provisioner daemonsets do not upgrade after the CSV is upgraded to a new version
  • BZ - 1845623 - [4.4.]: Upgrade OCP 4.3.3. to OCP 4.4.0 with alpha snapshot CRDs should print better error message
  • BZ - 1845724 - ovnkube-master sometimes stops handling pod updates.
  • BZ - 1846025 - etcd operator went into degraded status during rollback from 4.5 to 4.4
  • BZ - 1846100 - operator-registry base image used for disconnected catalogs does not have permission to migrate databases added via `oc adm catalog build`
  • BZ - 1846241 - [sriov][4.4.z] Failed to upgrade from 4.4 to 4.5 for sriov operator
  • BZ - 1847105 - Kuryr CI failing with pep8 issues
  • BZ - 1847141 - Need to add candidate-4.5, fast-4.5, and stable-4.5 channels
  • BZ - 1847419 - API server crash loop on ARO
  • BZ - 1847424 - Add Nodejs 12 agent to Jenkins
  • BZ - 1847442 - [upgrade]Pipeline build keeps new status after upgrade jenkins server from 4.3 to 4.4
  • BZ - 1847551 - re-enable jenkins tests in e2e-gcp-builds
  • BZ - 1847740 - openshift-marketplace: Pods found with invalid container images not present in release payload (v2)
  • BZ - 1847876 - gcp-routes service too slow to not route traffic into GCP SDN
  • BZ - 1847957 - [OSP] Floating IP specified with lbFloatingIP in install-config.yaml fails to attach to master node causing install to fail
  • BZ - 1848021 - k8s.gcr.io/pause:3.1 is in use as a pause container sometimes

References

(none)

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.