RHBA-2024:2035 - Bug Fix Advisory

Topic

OpenShift sandboxed containers 1.5.3 is now available.

Description

OpenShift sandboxed containers support for OpenShift Container Platform
provides users with built-in support for running Kata containers as an
additional, optional runtime.

This advisory contains an update for OpenShift sandboxed containers with bug fixes and container upgrades.

Space precludes documenting all of the updates to OpenShift sandboxed
containers in this advisory. See the Release Notes documentation,
which will be updated shortly for this release, for details about these
changes:

https://access.redhat.com/documentation/en-us/openshift_sandboxed_containers/1.5/html-single/openshift_sandboxed_containers_release_notes/

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

• Red Hat OpenShift Container Platform 4.13 for RHEL 9 x86_64

Fixes

• KATA-2881 - CVP failure: multiple required annotations missing [1.5.3 downstream]
• KATA-2898 - osc-podvm-image-creation in 1.5.3-7 & -8 fails to get image
• KATA-2847 - PeerPod stuck at ContainerCreating state
• KATA-2899 - RELATED_IMAGE_PODVM_PAYLOAD is missing from the operator csv
• KATA-2523 - Metadata associated with OpenShift sandboxed containers Operator needs updated to point to correct doc location

CVEs

• CVE-2021-35937
• CVE-2021-35938
• CVE-2021-35939
• CVE-2021-43618
• CVE-2023-5363
• CVE-2023-5981
• CVE-2023-7104
• CVE-2023-28322
• CVE-2023-38546
• CVE-2023-46218
• CVE-2023-48795
• CVE-2023-51385
• CVE-2023-52425
• CVE-2024-0553
• CVE-2024-0567
• CVE-2024-28757

References

(none)