4.17 version change log
View information of version changes for major, minor, and patch updates that are available for your Red Hat® OpenShift® on IBM Cloud® clusters that run this version. Changes include updates to Red Hat OpenShift, Kubernetes, and IBM Cloud Provider components.
Overview
Unless otherwise noted in the change logs, the IBM Cloud provider version enables Red Hat OpenShift APIs and features that are at beta. Red Hat OpenShift alpha features are disabled and subject to change.
Check the Security Bulletins on IBM Cloud Status for security vulnerabilities that affect Red Hat OpenShift on IBM Cloud. You can filter the results to view only Kubernetes Service security bulletins that are relevant to Red Hat OpenShift on IBM Cloud. Change log entries that address other security vulnerabilities but don't include an IBM security bulletin are for vulnerabilities that are not known to affect Red Hat OpenShift on IBM Cloud in normal usage. If you run privileged containers, run commands on the workers, or execute untrusted code, then you might be at risk.
Master patch updates are applied automatically. Worker node patch updates can be applied by reloading or updating the worker nodes. For more information about major, minor, and patch versions and preparation actions between minor versions, see Red Hat OpenShift versions.
Version 4.17
Worker node fix pack 4.17.12_1526_openshift, released 29 January 2025
The following table shows the components included in the worker node fix pack 4.17.12_1526_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.
| Component | Version | Description |
|---|---|---|
| Red Hat OpenShift and Red Hat CoreOS | 4.17.12 | For more information, see the change logs. |
| HAProxy | 14daa781a66ca5ed5754656ce53c3cca4af580b5 | N/A |
Master fix pack 4.17.10_1522_openshift, released 22 January 2025
The following table shows the changes that are in the master fix pack 4.17.10_1522_openshift. Master patch updates are applied automatically.
| Component | Previous | Current | Description |
|---|---|---|---|
| Cluster health image | v1.6.3 | v1.6.4 | New version contains updates and security fixes. |
| etcd | v3.5.16 | v3.5.17 | See the etcd release notes. |
| IBM Cloud Controller Manager | v1.30.6-4 | v1.30.8-3 | New version contains updates and security fixes. |
| IBM Cloud RBAC Operator | 743ed58 | cb4f333 | New version contains updates and security fixes. |
| Key Management Service provider | v2.10.8 | v2.10.9 | New version contains updates and security fixes. |
| Portieris admission controller | v0.13.21 | v0.13.23 | See the Portieris admission controller release notes. |
| Red Hat OpenShift on IBM Cloud. | 4.17.5 | 4.17.10 | See the Red Hat OpenShift on IBM Cloud release notes. |
| Red Hat OpenShift on IBM Cloud Control Plane Operator, Metrics Server, and toolkit | 4.17.0+20241112 | 4.17.0+20250102 | See the Red Hat OpenShift on IBM Cloud toolkit release notes. |
Worker node fix pack 4.17.11_1521_openshift, released 13 January 2025
The following table shows the components included in the worker node fix pack 4.17.11_1521_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.
| Component | Version | Description |
|---|---|---|
| RHEL_8 | 4.18.0-553.34.1.el8_10 | Resolves the following CVEs: RHSA-2025:0065, CVE-2024-53088, CVE-2024-53122, RHSA-2024:3043, CVE-2024-0690, RHSA-2025:0012, CVE-2024-35195, RHSA-2024:11161, and CVE-2024-52337. |
| RHEL_9 | 5.14.0-427.42.1.el9_4 | N/A |
| Red Hat OpenShift and Red Hat CoreOS | 4.17.11 | For more information, see the change logs. |
| HAProxy | 14daa781a66ca5ed5754656ce53c3cca4af580b5 | N/A |
Worker node fix pack 4.17.9_1520_openshift, released 30 December 2024
The following table shows the changes that are in the worker node fix pack 4.17.9_1520_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.
| Component | Previous | Current | Description |
|---|---|---|---|
| RHEL 8 Packages | N/A | N/A | Worker node package updates for RHSA-2024:3043, CVE-2024-0690, RHSA-2024:11161, CVE-2024-52337. |
| Red Hat OpenShift on IBM Cloud and Red Hat CoreOS | 4.17.8 | 4.17.9 | For more information, see the change logs. |
Worker node fix pack 4.17.8_1519_openshift, released 16 December 2024
The following table shows the changes that are in the worker node fix pack 4.17.8_1519_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.
| Component | Previous | Current | Description |
|---|---|---|---|
| RHEL 8 Packages | 4.18.0-553.30.1.el8_10 | 4.18.0-553.32.1.el8_10 | Worker node kernel & package updates for RHSA-2024:3043, CVE-2024-0690, RHSA-2024:10943, CVE-2024-46695, CVE-2024-49949, CVE-2024-50082, CVE-2024-50099, CVE-2024-50110, CVE-2024-50142, CVE-2024-50192, CVE-2024-50256, CVE-2024-50264, RHSA-2024:10779, CVE-2024-11168, CVE-2024-9287, RHSA-2024:10784, CVE-2022-3064. |
| HAProxy | 55c1488 | 14daa78 | Security fixes for CVE-2024-10963, CVE-2024-11168, CVE-2024-9287, CVE-2024-10041. |
| Red Hat OpenShift on IBM Cloud | 4.17.5 | 4.17.8 | For more information, see the change logs. |
Worker node fix pack 4.17.5_1518_openshift, released 05 December 2024
The following table shows the changes that are in the worker node fix pack 4.17.5_1518_openshift. Worker node patch updates can be applied by updating, reloading (in classic infrastructure), or replacing (in VPC infrastructure) the worker node.
| Component | Previous | Current | Description |
|---|---|---|---|
| RHEL 8 Packages | 4.18.0-553.27.1.el8_10 | 4.18.0-553.30.1.el8_10 | Worker node kernel & package updates for RHSA-2024:10379, CVE-2024-10041, CVE-2024-10963, RHSA-2024:3043, CVE-2024-0690, RHSA-2024:10289, CVE-2021-33198, CVE-2021-4024, CVE-2024-9676, RHSA-2024:10281, CVE-2024-27043, CVE-2024-27399, CVE-2024-38564, CVE-2024-46858. |
| RHEL 9 Packages | N/A | N/A | N/A |
| HAProxy | N/A | N/A | N/A |
| Red Hat OpenShift on IBM Cloud and Red Hat CoreOS | 4.17.4 | 4.17.5 | For more information, see the change logs. |
Master fix pack 4.17.5_1517_openshift, released 04 December 2024
The following table shows the changes that are in the master fix pack 4.17.5_1517_openshift. Master patch updates are applied automatically.
| Component | Previous | Current | Description |
|---|---|---|---|
| IBM Cloud Controller Manager | v1.30.6-3 | v1.30.6-4 | New version contains updates and security fixes. |
| Key Management Service provider | v2.10.7 | v2.10.8 | New version contains updates and security fixes. |
| Load balancer and load balancer monitor for IBM Cloud Provider | 3051 | 3079 | New version contains updates and security fixes. |
| Portieris admission controller | v0.13.20 | v0.13.21 | See the Portieris admission controller release notes. |
| Red Hat OpenShift on IBM Cloud. | 4.17.4 | 4.17.5 | See the Red Hat OpenShift on IBM Cloud release notes. |
Master fix pack 4.17.4_1515_openshift and worker node fix pack 4.17.4_1516_openshift, released 20 November 2024
| Component | Previous | Current | Description |
|---|---|---|---|
| IBM Cloud Controller Manager | v1.29.10-2 | v1.30.6-3 | New version contains updates and security fixes. |
| IBM Cloud RBAC Operator | c4a05b0 | 743ed58 | New version contains updates and security fixes. |
| Red Hat OpenShift (master) | 4.16.19 | 4.17.4 | See the Red Hat OpenShift on IBM Cloud release notes |
| Red Hat OpenShift (worker node) | 4.16.21 | 4.17.4 | See the Red Hat OpenShift on IBM Cloud release notes |
| Red Hat OpenShift on IBM Cloud Control Plane Operator, Metrics Server, and toolkit | 4.16.0+20240913 | 4.17.0+20241112 | See the Red Hat OpenShift on IBM Cloud toolkit release notes. |