Red Hat Product Errata RHBA-2022:9099 - Bug Fix Advisory
Issued:
2023-01-04
Updated:
2023-01-04

RHBA-2022:9099 - Bug Fix Advisory

Synopsis

OpenShift Container Platform 4.10.46 bug fix update

Type/Severity

Bug Fix Advisory

Topic

Red Hat OpenShift Container Platform release 4.10.46 is now available with
updates to packages and images that fix several bugs.

Description

Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.

This advisory contains the container images for Red Hat OpenShift Container
Platform 4.10.46. See the following advisory for the RPM packages for this
release:

https://access.redhat.com/errata/RHSA-2022:9098

Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:

https://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html

Solution

For OpenShift Container Platform 4.10 see the following documentation,
which will be updated shortly for this release, for important instructions
on how to upgrade your cluster and fully apply this asynchronous errata
update:

https://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html

You may download the oc tool and use it to inspect release image metadata
for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests
may be found at
https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags

The sha values for the release are:

(For x86_64 architecture)
The image digest is sha256:885eeba368670aded2ef6433814ebd0eab21566812125f459af45d93e7109692

(For s390x architecture)
The image digest is sha256:6ced0b3aa9ce617864438bb5c72cb69a30d8ae6173972739fa319cba933ffd0b

(For ppc64le architecture)
The image digest is sha256:ce235a5b4e34d7c95689ff6945c194c8be20c6d43e54fd5783002c7166242186

(For aarch64 architecture)
The image digest is sha256:54d3ce3a60a803ea59ed7bd30e1438c3e1844c99058af6434ad2f46135cb4fd4

All OpenShift Container Platform 4.10 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift Console
or the CLI oc command. Instructions for upgrading a cluster are available
at
https://docs.openshift.com/container-platform/4.10/updating/updating-cluster-cli.html

Affected Products

  • Red Hat OpenShift Container Platform 4.10 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform for Power 4.10 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.10 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for ARM 64 4.10 aarch64

Fixes

  • BZ - 2069638 - [4.10] When using RootDeviceHint rotational setting the host can fail to provision
  • BZ - 2086969 - "--prune-over-size-limit" is not working as expected
  • BZ - 2105911 - OLM create-namespace.spec.ts e2e test fails always
  • BZ - 2115872 - unit test, gofmt, and linter jobs are missing on release-4.10
  • OCPBUGS-2602 - Intermittent DNS Resolution Errors After Upgrading to 4.10.25
  • OCPBUGS-3477 - [4.10] Baremetal Provisioning fails on HP Gen9 systems due to eTag handling
  • OCPBUGS-3485 - Console shouldn't try to install dynamic plugins if permissions aren't available
  • OCPBUGS-3619 - List pages in pipelines is taking more time to load when there are too many items
  • OCPBUGS-3778 - [4.10] ovn-k network policy races
  • OCPBUGS-3853 - [4.10][Dual Stack] ovn-ipsec crashlooping due to cert signing issues
  • OCPBUGS-4128 - catalog-operator fatal error: concurrent map writes
  • OCPBUGS-4387 - [2107531] Implement upstream fix for kube-proxy: fix duplicate port opening #107413
  • OCPBUGS-4494 - [release-4.10] openshift-ingress-operator with mTLS does not download CRL
  • OCPBUGS-4598 - [4.10z] Spike in pod-latency graph observed due to ovnkube-master restarts
  • OCPBUGS-4614 - [4.10] Ipsec pods restart due to liveness probes fail in cluster with more than 150 +
  • OCPBUGS-4622 - [4.10] OVN silently failing in case of a stuck pod
  • OCPBUGS-4799 - OLM generates invalid component selector labels
  • OCPBUGS-4839 - [4.10] Pod LSP missing from PortGroup
  • OCPBUGS-4861 - [4.10] Network Policy executes duplicate transactions for every pod update
  • OCPBUGS-4888 - [4.10] Pods completed + deleted may leak

References

(none)

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.