Red Hat Product Errata RHEA-2023:1238 - Product Enhancement Advisory
Issued:
2023-03-23
Updated:
2023-03-23

RHEA-2023:1238 - Product Enhancement Advisory

Synopsis

cert-manager Operator for Red Hat OpenShift 1.10.2

Type/Severity

Product Enhancement Advisory

Topic

cert-manager Operator for Red Hat OpenShift 1.10.2

Description

The cert-manager Operator for Red Hat OpenShift builds on top of Kubernetes, introducing certificate authorities
and certificates as first-class resource types in the Kubernetes API. This makes it possible to provide
certificates-as-a-service to developers working within your Kubernetes cluster.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Cert Manager support for Red Hat OpenShift release 1.10 x86_64

Fixes

  • CFE-745 - Bump cert-manager to v1.10
  • CFE-740 - As a developer, I want to be able to customize cert-manager as required during operator installation
  • CFE-694 - Cert Manager Operator: Release OLM channels and other CSV configs need to be configured/updated
  • CFE-752 - As a developer, I want to be able to customize cert-manager component via the cert-manager-operator
  • CFE-755 - As a developer, I want to be able to configure proxy on the cert-manager operator and operand
  • CM-23 - unsupportedConfigOverrides replaces args instead of append/add
  • CM-35 - cert-manager should not install as a cluster operator
  • CM-37 - Detect Cluster Outbound Proxy and Additional Root Certificate Authorities
  • CFE-654 - Cert-Manager Operator OLM scaffolding
  • CFE-655 - Cert Manager Operator: Disable the operator for registering as a Cluster Operator
  • CFE-668 - Cert Manager Operator: Generic deployment controller based on controller-runtime
  • CFE-676 - Cert Manager Operator: Decouple operator from clusteroperators
  • CFE-698 - Cert Manager Operator: Update UnsupportedConfigOverrides to do union of args
  • CFE-715 - As a developer, I want cert-manager (Operand Namespace) to have the required configurations for the monitoring in Openshift.
  • CFE-753 - As a developer, I want to update cert-manager manifest to comply with restricted pod security level
  • CFE-754 - Operator Pod Security compliance: cert-manager

CVEs

(none)

References

x86_64

cert-manager/cert-manager-operator-bundle@sha256:e998db3a6d6bf76d26ce14b63a598a6dfcdba0cf2e59f250e0dab555a4493fb7
cert-manager/cert-manager-operator-rhel9@sha256:eb9b1fa3e7a7cea6eeb690406b6461a1b09b3296ae54c554e4919bf5a44f2e89
cert-manager/jetstack-cert-manager-rhel9@sha256:cec622c60b7803d81fc385f55891d285b18a0c3d348b8dd5de75dacb0748e5ed

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.