RHSA-2025:16529 - Security Advisory

Topic

An update for ztp-site-generate is available for Red Hat OpenShift Container Platform 4.17.

Description

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the ztp-site-generate image for Red Hat OpenShift Container Platform 4.17.
All OpenShift Container Platform users are advised to upgrade to these updated packages and images.

Solution

For OpenShift Container Platform 4.17, see the following documentation for important instructions about upgrading your cluster and applying this asynchronous errata update:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/index Information about accessing this content is available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli

Fixes

• OCPBUGS-60960 - [Core RDS] MetalLB CR community.yaml should be optional
• OCPBUGS-44239 - Reference LVM Storage NS is missing the workload partitioning annotation
• OCPBUGS-42830 - RAN DU reference needs upgrade support for Cluster Logging Operator 6.0
• OCPBUGS-35105 - ZTP: Update ptpconfig to configure NAV-TIMELS to be periodically sent via the UBX-CFG-MSG message
• OCPBUGS-34603 - ZTP: Add a new set of PTP configurations for events in source CRs with additional PTP options
• OCPBUGS-49372 - [4.17] remove phc2sys `-w` option

CVEs

• CVE-2024-45339
• CVE-2025-53547

References

• https://access.redhat.com/security/updates/classification/