First published: Tue Sep 13 2022(Updated: )
Red Hat Advanced Cluster Management for Kubernetes 2.5.2 images<br>Red Hat Advanced Cluster Management for Kubernetes provides the<br>capabilities to address common challenges that administrators and site<br>reliability engineers face as they work across a range of public and<br>private cloud environments. Clusters and applications are all visible and<br>managed from a single console—with security policy built in.<br>This advisory contains the container images for Red Hat Advanced Cluster<br>Management for Kubernetes, which fix several bugs. See the following<br>Release Notes documentation, which will be updated shortly for this<br>release, for additional details about this release:<br><a href="https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.5/html/release_notes/" target="_blank">https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.5/html/release_notes/</a> Security fixes:<br><li> moment: inefficient parsing algorithim resulting in DoS (CVE-2022-31129)</li> <li> vm2: Sandbox Escape in vm2 (CVE-2022-36067)</li> Bug fixes:<br><li> Submariner Globalnet e2e tests failed on MTU between On-Prem to Public clusters (BZ# 2074547)</li> <li> OCP 4.11 - Install fails because of: pods "management-ingress-63029-5cf6789dd6-" is forbidden: unable to validate against any security context constrain (BZ# 2082254)</li> <li> subctl gather fails to gather libreswan data if CableDriver field is missing/empty in Submariner Spec (BZ# 2083659)</li> <li> Yaml editor for creating vSphere cluster moves to next line after typing (BZ# 2086883)</li> <li> Submariner addon status doesn't track all deployment failures (BZ# 2090311)</li> <li> Unable to deploy Hypershift operator on MCE hub using ManagedClusterAddOn without including s3 secret (BZ# 2091170)</li> <li> After switching to ACM 2.5 the managed clusters log "unable to create ClusterClaim" errors (BZ# 2095481)</li> <li> Enforce failed and report the violation after modified memory value in limitrange policy (BZ# 2100036)</li> <li> Creating an application fails with "This application has no subscription match selector (spec.selector.matchExpressions)" (BZ# 2101577)</li> <li> Inconsistent cluster resource statuses between "All Subscription" topology and individual topologies (BZ# 2102273)</li> <li> managed cluster is in "unknown" state for 120 mins after OADP restore</li> <li> RHACM 2.5.2 images (BZ# 2104553)</li> <li> Subscription UI does not allow binding to label with empty value (BZ# 2104961)</li> <li> Upgrade to 2.5.1 from 2.5.0 fails due to missing Subscription CRD (BZ# 2106069)</li> <li> Region information is not available for Azure cloud in managedcluster CR (BZ# 2107134)</li> <li> cluster uninstall log points to incorrect container name (BZ# 2107359)</li> <li> ACM shows wrong path for Argo CD applicationset git generator (BZ# 2107885)</li> <li> Single node checkbox not visible for 4.11 images (BZ# 2109134)</li> <li> Unable to deploy hypershift cluster when enabling validate-cluster-security (BZ# 2109544)</li> <li> Deletion of Application (including app related resources) from the console fails to delete PlacementRule for the application (BZ# 20110026)</li> <li> After the creation by a policy of job or deployment (in case the object is missing)ACM is trying to add new containers instead of updating (BZ# 2117728)</li> <li> pods in CrashLoopBackoff on 3.11 managed cluster (BZ# 2122292)</li> <li> ArgoCD and AppSet Applications do not deploy to local-cluster (BZ# 2124707)</li>
Affected Software | Affected Version | How to fix |
---|
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.