RHBA-2022:5538 - Bug Fix Advisory

Topic

An updated OpenShift File Integrity Operator image that fixes various bugs and adds enhancements is now available for the Red Hat OpenShift Enterprise 4 catalog.

Description

The OpenShift File Integrity Operator v0.1.30 is now available. See the documentation for bug fix and enhancement information:

https://docs.openshift.com/container-platform/4.10/security/file_integrity_operator/file-integrity-operator-release-notes.html

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to:

https://docs.openshift.com/container-platform/4.10/updating/updating-cluster-cli.html

Affected Products

• Red Hat OpenShift Container Platform 4.10 for RHEL 8 x86_64
• Red Hat OpenShift Container Platform 4.9 for RHEL 8 x86_64
• Red Hat OpenShift Container Platform 4.8 for RHEL 8 x86_64
• Red Hat OpenShift Container Platform 4.7 for RHEL 8 x86_64
• Red Hat OpenShift Container Platform 4.6 for RHEL 8 x86_64

Fixes

• BZ - 2088201 - File integrity operator should comply to restricted pod security level
• BZ - 2101393 - NodeHasIntegrityFailure alert doesn't set namespace label
• BZ - 2104897 - Failed to create Fileintegrity object in a namespace without openshift prefix
• BZ - 2108475 - Unable to upgrade file integrity operator using catalog source
• BZ - 2109153 - pods for daemonset failed to create after file integrity operator upgrade from v0.1.24 to v0.1.29

CVEs

• CVE-2021-3634
• CVE-2021-3737
• CVE-2021-4189
• CVE-2021-40528
• CVE-2022-1271
• CVE-2022-1621
• CVE-2022-1629
• CVE-2022-22576
• CVE-2022-25313
• CVE-2022-25314
• CVE-2022-27774
• CVE-2022-27776
• CVE-2022-27782
• CVE-2022-29824

References

• null