RHBA-2022:7912 - Bug Fix Advisory

Topic

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.11.3 on Red Hat Enterprise Linux 8 from Red Hat Container Registry.

Description

Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.

Bug fix(es):

• Previously, due to a routing bug, users were not navigated to the resource's list page when adding a new component for deleting any resource on Namespace Store, Backing Store, Bucket Class, and Object Bucket Class details page. When users are deleting a resource from the details page or when the resource is deleted in the background, the delete modal hangs and does not close. With this update, the component and routing issues are fixed. Now, when the resource is deleted, the modal closes, and the user is navigated to the list page of that resource. (BZ#2133424)
• Previously, in 4.11, the handling of the ceph toolbox was moved from `ocsinitialization` to the `storagecluster` controller. The old way of enabling the toolbox from the `ocsinitialization cr` was kept as-is and did not account for the scenario when someone tries to add tolerations to the toolbox from the `ocsinitialization cr`. So, when someone tries to add tolerations to the toolbox by adding the tolerations to the `ocsinitialization cr`, they don't take effect. With this update, tolerations can now be added from the `ocsinitialization cr`, as well as the `storagecluster cr`, as intended. For example, with this fix, you can add tolerations without any issue when there is a taint on the node using the `ocsinitialization cr` even if the toolbox pod is not running. (BZ#2132693)

All users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

• Red Hat OpenShift Data Foundation 4 for RHEL 8 x86_64
• Red Hat OpenShift Data Foundation for IBM Power, little endian 4 for RHEL 8 ppc64le
• Red Hat OpenShift Data Foundation for IBM Z and LinuxONE 4 for RHEL 8 s390x

Fixes

• BZ - 2116823 - [DR] The user should have a way to provide a label selector for the PVCs that need DR protection
• BZ - 2128994 - [RDR][UI] Applications deployed via UI console are not DR protected
• BZ - 2132693 - [4.11 clone] setting tolerations for non-ocs taint on toolbox pod is not working
• BZ - 2133424 - [UI] Delete modal stuck in loading state, not redirecting to list page
• BZ - 2133742 - Fix e2e tests for release-4.11 branch
• BZ - 2134600 - Include at ODF 4.11 container images (2) the RHEL8 CVE fix on "bind"
• BZ - 2135842 - Include at ODF 4.11 container images (8) the RHEL8 CVE fix on "expat"
• BZ - 2140175 - Include at ODF 4.11 container images (18) the RHEL8 CVE fix on "libksba"

CVEs

• CVE-2020-35525
• CVE-2020-35527
• CVE-2022-2509
• CVE-2022-3515
• CVE-2022-37434
• CVE-2022-38177
• CVE-2022-38178
• CVE-2022-40674

References

(none)