- Issued:
- 2023-03-23
- Updated:
- 2023-03-23
RHEA-2023:1238 - Product Enhancement Advisory
Synopsis
cert-manager Operator for Red Hat OpenShift 1.10.2
Type/Severity
Product Enhancement Advisory
Topic
cert-manager Operator for Red Hat OpenShift 1.10.2
Description
The cert-manager Operator for Red Hat OpenShift builds on top of Kubernetes, introducing certificate authorities
and certificates as first-class resource types in the Kubernetes API. This makes it possible to provide
certificates-as-a-service to developers working within your Kubernetes cluster.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Cert Manager support for Red Hat OpenShift release 1.10 x86_64
Fixes
- CFE-745 - Bump cert-manager to v1.10
- CFE-740 - As a developer, I want to be able to customize cert-manager as required during operator installation
- CFE-694 - Cert Manager Operator: Release OLM channels and other CSV configs need to be configured/updated
- CFE-752 - As a developer, I want to be able to customize cert-manager component via the cert-manager-operator
- CFE-755 - As a developer, I want to be able to configure proxy on the cert-manager operator and operand
- CM-23 - unsupportedConfigOverrides replaces args instead of append/add
- CM-35 - cert-manager should not install as a cluster operator
- CM-37 - Detect Cluster Outbound Proxy and Additional Root Certificate Authorities
- CFE-654 - Cert-Manager Operator OLM scaffolding
- CFE-655 - Cert Manager Operator: Disable the operator for registering as a Cluster Operator
- CFE-668 - Cert Manager Operator: Generic deployment controller based on controller-runtime
- CFE-676 - Cert Manager Operator: Decouple operator from clusteroperators
- CFE-698 - Cert Manager Operator: Update UnsupportedConfigOverrides to do union of args
- CFE-715 - As a developer, I want cert-manager (Operand Namespace) to have the required configurations for the monitoring in Openshift.
- CFE-753 - As a developer, I want to update cert-manager manifest to comply with restricted pod security level
- CFE-754 - Operator Pod Security compliance: cert-manager
CVEs
(none)
References
x86_64
cert-manager/cert-manager-operator-bundle@sha256:e998db3a6d6bf76d26ce14b63a598a6dfcdba0cf2e59f250e0dab555a4493fb7 |
cert-manager/cert-manager-operator-rhel9@sha256:eb9b1fa3e7a7cea6eeb690406b6461a1b09b3296ae54c554e4919bf5a44f2e89 |
cert-manager/jetstack-cert-manager-rhel9@sha256:cec622c60b7803d81fc385f55891d285b18a0c3d348b8dd5de75dacb0748e5ed |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.