RHBA-2024:0633 - Bug Fix Advisory

Topic

Updated container images that fix multiple bugs are now available for LVMS 4.14

Description

Logical volume manager storage (LVMS) uses the TopoLVM CSI driver to
dynamically provision local storage on single node OpenShift clusters.

Logical volume manager storage creates thin-provisioned volumes using the
Logical Volume Manager and provides dynamic provisioning of block storage
on a single node, limited resources SNO cluster.

This erratum corrects the following issue:

• Previously, the minimum value of the

`spec.storage.deviceClasses.thinPoolConfig.overprovisionRatio` was 2. This
caused issues for users who required guaranteed capacity. This fix changes
the minimum value for overprovisionRatio to 1, which disables
overprovisioning.

Users of LVMS are advised to upgrade to the latest version of the LVMS in
OpenShift Container Platform, which fixes these bugs and adds these
enhancements.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

• Red Hat OpenShift Container Platform 4.14 for RHEL 9 x86_64
• Red Hat OpenShift Container Platform for Power 4.14 for RHEL 9 ppc64le
• Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.14 for RHEL 9 s390x
• Red Hat OpenShift Container Platform for ARM 64 4.14 for RHEL 9 aarch64

Fixes

• OCPBUGS-23782 - LVM Controller not respecting Tolerations while counting VGs created
• OCPBUGS-24427 - overprovisionRatio can not be set to 1
• OCPBUGS-25041 - Workload annotations are missing in the pod spec
• OCPBUGS-27325 - Workload annotation missing in lvms namespace causing LVMS installation failure
• OCPBUGS-27327 - [release-4.14] LVMD config does not get created when volume group is already present
• OCPBUGS-27338 - [release-4.14] LVMS deployment.kubernetes.io/revision in topolvm-controller container is continously patched out
• OCPBUGS-27403 - [release-4.14] LVM Operator does not have update and patch rights for various Cluster scoped resources

CVEs

• CVE-2007-4559
• CVE-2021-3826
• CVE-2021-35937
• CVE-2021-35938
• CVE-2021-35939
• CVE-2021-43618
• CVE-2023-4016
• CVE-2023-4641
• CVE-2023-5363
• CVE-2023-5981
• CVE-2023-7104
• CVE-2023-22745
• CVE-2023-27043
• CVE-2023-29491
• CVE-2023-29499
• CVE-2023-32611
• CVE-2023-32665
• CVE-2023-36054
• CVE-2023-38545
• CVE-2023-38546
• CVE-2023-39615
• CVE-2023-39975
• CVE-2023-43804
• CVE-2023-44487
• CVE-2023-45803
• CVE-2024-0553
• CVE-2024-0567

References

(none)