Version 4.16 change log

View information of version changes for major, minor, and patch updates that are available for your Red Hat® OpenShift® on IBM Cloud® clusters that run version 4.16. Changes include updates to Red Hat OpenShift, Kubernetes, and IBM Cloud Provider components.

Overview

Unless otherwise noted in the change logs, the IBM Cloud provider version enables Red Hat OpenShift APIs and features that are at beta. Red Hat OpenShift alpha features are disabled and subject to change.

Check the Security Bulletins on IBM Cloud Status for security vulnerabilities that affect Red Hat OpenShift on IBM Cloud. You can filter the results to view only Kubernetes Service security bulletins that are relevant to Red Hat OpenShift on IBM Cloud. Change log entries that address other security vulnerabilities but don't include an IBM security bulletin are for vulnerabilities that are not known to affect Red Hat OpenShift on IBM Cloud in normal usage. If you run privileged containers, run commands on the workers, or execute untrusted code, then you might be at risk.

Master patch updates are applied automatically. Worker node patch updates can be applied by reloading or updating the worker nodes. For more information about major, minor, and patch versions and preparation actions between minor versions, see Red Hat OpenShift versions.

Change log for worker node fix pack 4.16.21_1544_openshift, released 18 November 2024

The following table shows the changes that are in the worker node fix pack 4.16.21_1544_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 4.16.19_1542_openshift
Component	Previous	Current	Description
RHEL 8 Packages	4.18.0-553.22.1.el8_10	4.18.0-553.27.1.el8_10	Worker node kernel & package updates for RHSA-2024:8846, CVE-2024-9341, CVE-2024-9407, CVE-2024-9675, RHSA-2024:8860, CVE-2024-3596, RHSA-2024:9689, CVE-2018-12699, RHSA-2024:8922, CVE-2019-12900, RHSA-2024:3043, CVE-2024-0690, RHSA-2024:9502, CVE-2024-50602, RHSA-2024:8849, CVE-2023-45539, RHSA-2024:8856, CVE-2022-48773, CVE-2022-48936, CVE-2023-52492, CVE-2024-24857, CVE-2024-26851, CVE-2024-26924, CVE-2024-26976, CVE-2024-27017, CVE-2024-27062, CVE-2024-35839, CVE-2024-35898, CVE-2024-35939, CVE-2024-38540, CVE-2024-38541, CVE-2024-38586, CVE-2024-38608, CVE-2024-39503, CVE-2024-40924, CVE-2024-40961, CVE-2024-40983, CVE-2024-40984, CVE-2024-41009, CVE-2024-41042, CVE-2024-41066, CVE-2024-41092, CVE-2024-41093, CVE-2024-42070, CVE-2024-42079, CVE-2024-42244, CVE-2024-42284, CVE-2024-42292, CVE-2024-42301, CVE-2024-43854, CVE-2024-43880, CVE-2024-43889, CVE-2024-43892, CVE-2024-44935, CVE-2024-44989, CVE-2024-44990, CVE-2024-45018, CVE-2024-46826, CVE-2024-47668, CIS benchmark compliance: 1.4.3, 1.4.4, 1.6.2, 1.6.4.
Red Hat OpenShift on IBM Cloud and Red Hat CoreOS	4.16.19	4.16.21	For more information, see the change logs.
HAProxy	885986	55c148	Security fixes for CVE-2023-45539, CVE-2024-3596, CVE-2019-12900, CVE-2024-50602.

Change log for master fix pack 4.16.19_1543_openshift, released 13 November 2024

The following table shows the changes that are in the master fix pack 4.16.19_1543_openshift. Master patch updates are applied automatically.

Changes since version 4.16.16_1541_openshift
Component	Previous	Current	Description
IBM Cloud Block Storage driver and plug-in	v2.5.15	v2.5.16	New version contains updates and security fixes.
IBM Cloud Controller Manager	v1.29.9-6	v1.29.10-2	New version contains updates and security fixes.
IBM Cloud RBAC Operator	77dac6b	c4a05b0	New version contains updates and security fixes.
Red Hat OpenShift on IBM Cloud.	4.16.16	4.16.19	See the Red Hat OpenShift on IBM Cloud release notes.

Change log for worker node fix pack 4.16.19_1542_openshift, released 04 November 2024

The following table shows the changes that are in the worker node fix pack 4.16.19_1542_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 4.16.17_1540_openshift
Component	Previous	Current	Description
RHEL 8 Packages	N/A	N/A	Package updates for RHSA-2024:3043, CVE-2024-0690, RHSA-2024:8359, CVE-2024-6232
RHEL 9 Packages	5.14.0-427.40.1.el9_4	5.14.0-427.42.1.el9_4	Kernel and package updates for RHSA-2024:8617, CVE-2021-47383, CVE-2024-2201, CVE-2024-26640, CVE-2024-26826, CVE-2024-26923, CVE-2024-26935, CVE-2024-26961, CVE-2024-36244, CVE-2024-39472, CVE-2024-39504, CVE-2024-40904, CVE-2024-40931, CVE-2024-40960, CVE-2024-40972, CVE-2024-40977, CVE-2024-40995, CVE-2024-40998, CVE-2024-41005, CVE-2024-41013, CVE-2024-41014, CVE-2024-43854, CVE-2024-45018, RHSA-2024:8446, CVE-2024-6232
Red Hat OpenShift on IBM Cloud and Red Hat CoreOS	4.16.17	4.16.19	For more information, see the change logs.
Haproxy	N/A	N/A	N/A

Change log for master fix pack 4.16.16_1541_openshift, released 30 October 2024

The following table shows the changes that are in the master fix pack 4.16.16_1541_openshift. Master patch updates are applied automatically.

Changes since version 4.16.10_1537_openshift
Component	Previous	Current	Description
Calico	v3.28.1	v3.28.2	See the Calico release notes.
Cluster health image	v1.6.2	v1.6.3	New version contains updates and security fixes.
etcd	v3.5.15	v3.5.16	See the etcd release notes.
IBM Cloud Controller Manager	v1.29.9-1	v1.29.9-6	New version contains updates and security fixes.
IBM Cloud File Storage for Classic for Classic plug-in and monitor	446	447	New version contains updates and security fixes.
IBM Cloud RBAC Operator	5b17dab	77dac6b	New version contains updates and security fixes.
Key Management Service provider	v2.10.5	v2.10.7	New version contains updates and security fixes.
Portieris admission controller	v0.13.18	v0.13.20	See the Portieris admission controller release notes.
Red Hat OpenShift on IBM Cloud.	4.16.10	4.16.16	See the Red Hat OpenShift on IBM Cloud release notes.
Tigera Operator	v1.34.3	v1.34.5	See the Tigera Operator release notes.

Change log for worker node fix pack 4.16.17_1540_openshift, released 21 October 2024

The following table shows the changes that are in the worker node fix pack 4.16.17_1540_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 4.16.15_1539_openshift
Component	Previous	Current	Description
RHEL 8 Packages	N/A	N/A	Package updates for RHSA-2024:8038, CVE-2023-45290, CVE-2024-34155, CVE-2024-34156, CVE-2024-34158, RHSA-2024:7848, CVE-2024-5535, RHSA-2024:3043, CVE-2024-0690.
RHEL 9 Packages	5.14.0-427.37.1.el9_4	5.14.0-427.40.1.el9_4	Kernel and package updates for RHSA-2024:8162, CVE-2021-47385, CVE-2023-28746, CVE-2023-52658, CVE-2024-27403, CVE-2024-35989, CVE-2024-36889, CVE-2024-36978, CVE-2024-38556, CVE-2024-39483, CVE-2024-39502, CVE-2024-40959, CVE-2024-42079, CVE-2024-42272, CVE-2024-42284. CIS benchmark compliance: 5.2.18.,2.1.2, 3.3.7, 2.2.14.
Red Hat OpenShift on IBM Cloud and Red Hat CoreOS	4.16.15	4.16.17	For more information, see the change logs.
Haproxy	67d03375	88598691	Security fixes for CVE-2024-5535.

Change log for worker node fix pack 4.16.15_1539_openshift, released 09 October 2024

The following table shows the changes that are in the worker node fix pack 4.16.15_1539_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 4.16.13_1538_openshift
Component	Previous	Current	Description
RHEL 8 Packages	4.18.0-553.16.1.el8_10	4.18.0-553.22.1.el8_10	CIS benchmark compliance: 1.4.2.. Kernel and package updates for RHSA-2024:7000, CVE-2021-46984, CVE-2021-47097, CVE-2021-47101, CVE-2021-47287, CVE-2021-47289, CVE-2021-47321, CVE-2021-47338, CVE-2021-47352, CVE-2021-47383, CVE-2021-47384, CVE-2021-47385, CVE-2021-47386, CVE-2021-47393, CVE-2021-47412, CVE-2021-47432, CVE-2021-47441, CVE-2021-47455, CVE-2021-47466, CVE-2021-47497, CVE-2021-47527, CVE-2021-47560, CVE-2021-47582, CVE-2021-47609, CVE-2022-48619, CVE-2022-48754, CVE-2022-48760, CVE-2022-48804, CVE-2022-48836, CVE-2022-48866, CVE-2023-52470, CVE-2023-52476, CVE-2023-52478, CVE-2023-52522, CVE-2023-52605, CVE-2023-52683, CVE-2023-52798, CVE-2023-52800, CVE-2023-52809, CVE-2023-52817, CVE-2023-52840, CVE-2023-6040, CVE-2024-23848, CVE-2024-26595, CVE-2024-26600, CVE-2024-26638, CVE-2024-26645, CVE-2024-26649, CVE-2024-26665, CVE-2024-26717, CVE-2024-26720, CVE-2024-26769, CVE-2024-26846, CVE-2024-26855, CVE-2024-26880, CVE-2024-26894, CVE-2024-26923, CVE-2024-26939, CVE-2024-27013, CVE-2024-27042, CVE-2024-35809, CVE-2024-35877, CVE-2024-35884, CVE-2024-35944, CVE-2024-35989, CVE-2024-36883, CVE-2024-36901, CVE-2024-36902, CVE-2024-36919, CVE-2024-36920, CVE-2024-36922, CVE-2024-36939, CVE-2024-36953, CVE-2024-37356, CVE-2024-38558, CVE-2024-38559, CVE-2024-38570, CVE-2024-38579, CVE-2024-38581, CVE-2024-38619, CVE-2024-39471, CVE-2024-39499, CVE-2024-39501, CVE-2024-39506, CVE-2024-40901, CVE-2024-40904, CVE-2024-40911, CVE-2024-40912, CVE-2024-40929, CVE-2024-40931, CVE-2024-40941, CVE-2024-40954, CVE-2024-40958, CVE-2024-40959, CVE-2024-40960, CVE-2024-40972, CVE-2024-40977, CVE-2024-40978, CVE-2024-40988, CVE-2024-40989, CVE-2024-40995, CVE-2024-40997, CVE-2024-40998, CVE-2024-41005, CVE-2024-41007, CVE-2024-41008, CVE-2024-41012, CVE-2024-41013, CVE-2024-41014, CVE-2024-41023, CVE-2024-41035, CVE-2024-41038, CVE-2024-41039, CVE-2024-41040, CVE-2024-41041, CVE-2024-41044, CVE-2024-41055, CVE-2024-41056, CVE-2024-41060, CVE-2024-41064, CVE-2024-41065, CVE-2024-41071, CVE-2024-41076, CVE-2024-41090, CVE-2024-41091, CVE-2024-41097, CVE-2024-42084, CVE-2024-42090, CVE-2024-42094, CVE-2024-42096, CVE-2024-42114, CVE-2024-42124, CVE-2024-42131, CVE-2024-42152, CVE-2024-42154, CVE-2024-42225, CVE-2024-42226, CVE-2024-42228, CVE-2024-42237, CVE-2024-42238, CVE-2024-42240, CVE-2024-42246, CVE-2024-42265, CVE-2024-42322, CVE-2024-43830, CVE-2024-43871, RHSA-2024:7481, CVE-2023-20584, CVE-2023-31315, CVE-2023-31356, RHSA-2024:3043, CVE-2024-0690, RHSA-2024:6969, CVE-2023-45290, CVE-2024-24783, CVE-2024-24784, CVE-2024-24788, CVE-2024-24791, RHSA-2024:6989, CVE-2024-45490, CVE-2024-45491, CVE-2024-45492, RHSA-2024:6975, CVE-2024-4032, CVE-2024-6232, CVE-2024-6923.
Red Hat OpenShift on IBM Cloud and Red Hat CoreOS	4.16.13	4.16.15	For more information, see the change logs.
Haproxy	546887ab	67d03375	Security fixes for CVE-2024-4032, CVE-2024-6232, CVE-2024-6923, CVE-2024-45490, CVE-2024-45491, CVE-2024-45492.

Change log for master fix pack 4.16.10_1537_openshift, released 25 September 2024

The following table shows the changes that are in the master fix pack 4.16.10_1537_openshift. Master patch updates are applied automatically.

Changes since version 4.16.7_1532_openshift
Component	Previous	Current	Description
Calico API server	N/A	v3.28.1	See the Calico release notes.
IBM Cloud Block Storage driver and plug-in	v2.5.13	v2.5.15	New version contains updates and security fixes.
IBM Cloud Controller Manager	v1.29.8-1	v1.29.9-1	New version contains updates and security fixes.
IBM Cloud File Storage for Classic for Classic plug-in and monitor	445	446	New version contains updates and security fixes.
IBM Cloud RBAC Operator	897f067	5b17dab	New version contains updates and security fixes.
Key Management Service provider	v2.10.4	v2.10.5	New version contains updates and security fixes.
Load balancer and load balancer monitor for IBM Cloud Provider	3022	3051	New version contains updates and security fixes.
Red Hat OpenShift on IBM Cloud.	4.16.7	4.16.10	See the Red Hat OpenShift on IBM Cloud release notes.
Red Hat OpenShift on IBM Cloud Control Plane Operator, Metrics Server, and toolkit	4.16.0+20240814	4.16.0+20240913	See the Red Hat OpenShift on IBM Cloud toolkit release notes.

Change log for worker node fix pack 4.16.13_1538_openshift, released 23 September 2024

The following table shows the changes that are in the worker node fix pack 4.16.13_1538_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 4.16.10_1535_openshift
Component	Previous	Current	Description
RHEL 8 Packages	N/A	N/A	Package updates for RHSA-2024:3043, CVE-2024-0690.
Red Hat OpenShift on IBM Cloud.	4.16.10	4.16.13	For more information, see the change logs.

Change log for worker node fix pack 4.16.10_1535_openshift, released 10 September 2024

The following table shows the changes that are in the worker node fix pack 4.16.10_1535_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.

Changes since version 4.16.8_1533_openshift
Component	Previous	Current	Description
Red Hat OpenShift on IBM Cloud.	4.16.8	4.16.10	For more information, see the change logs.
RHEL 8 Packages	N/A	N/A	Worker node package updates for RHSA-2024:3043, CVE-2024-0690, RHSA-2024:5962, CVE-2024-4032, CVE-2024-6345, CVE-2024-6923, CVE-2024-8088.

Change log for master fix pack 4.16.7_1532_openshift and worker node fix pack 4.16.6_1531_openshift, released 30 August 2024

Changes since master fix pack 4.15.25_1556_openshift and worker fix pack 4.15.28_1557_openshift.
Component	Previous	Current	Description
Calico	v3.27.4	v3.28.1	See the Calico release notes.
Cluster health image	v1.5.8	v1.6.2	New version contains updates and security fixes.
IBM Cloud Controller Manager	v1.28.13-1	v1.29.8-1	New version contains updates and security fixes.
Key Management Service provider	v2.9.9	v2.10.4	New version contains updates and security fixes. In addition, only KMS v2 is supported. KMS v1 instances were migrated to KMS v2 as part of the Red Hat OpenShift on IBM Cloud version 4.15 release.
Pause container image	3.9	3.10	See the pause container image release notes.
Red Hat OpenShift (master)	4.15.25	4.16.7	See the Red Hat OpenShift release notes.
Red Hat OpenShift (worker node)	4.15.28	4.16.6	See the Red Hat OpenShift release notes.
Red Hat OpenShift on IBM Cloud Control Plane Operator, Metrics Server, and toolkit	4.15.0+20240814	4.16.0+20240814	See the Red Hat OpenShift on IBM Cloud toolkit release notes.
Tigera Operator	v1.32.10	v1.34.3	See the Tigera Operator release notes.