From c6efb3901bf9a351e81c239e431df2187352ce52 Mon Sep 17 00:00:00 2001 From: Agil Antony Date: Wed, 3 Jul 2024 15:11:00 +0530 Subject: [PATCH] ROX24807 Release notes updates for 4.4.4 ROX24807 SME feedback ROX24807 SME feedback ROX24807 Minor adjustments --- modules/common-attributes.adoc | 4 ++-- release_notes/44-release-notes.adoc | 28 ++++++++++++++++++++++++++++ 2 files changed, 30 insertions(+), 2 deletions(-) diff --git a/modules/common-attributes.adoc b/modules/common-attributes.adoc index d3126f187281..b5e754617f88 100644 --- a/modules/common-attributes.adoc +++ b/modules/common-attributes.adoc @@ -55,9 +55,9 @@ endif::[] :osp: Red{nbsp}Hat OpenShift :olm-first: Operator Lifecycle Manager (OLM) :olm: OLM -:rhacs-version: 4.4.3 +:rhacs-version: 4.4.4 :ocp-supported-version: 4.11 -:ocp-latest-version: 4.15 +:ocp-latest-version: 4.16 :product-rosa: Red{nbsp}Hat OpenShift Service on AWS :product-rosa-short: ROSA :product-title: Red{nbsp}Hat Advanced Cluster Security for Kubernetes diff --git a/release_notes/44-release-notes.adoc b/release_notes/44-release-notes.adoc index ef48f9a10440..00b9ca4d91e5 100644 --- a/release_notes/44-release-notes.adoc +++ b/release_notes/44-release-notes.adoc @@ -19,6 +19,7 @@ toc::[] |`4.4.1` | 22 April 2024 |`4.4.2` | 20 May 2024 |`4.4.3` | 11 June 2024 +|`4.4.4` | 08 July 2024 |==== @@ -617,6 +618,33 @@ This release contains the following updates: ** `github.com/containers/image/v5` from v5.29.2 to v5.29.3 ** `github.com/docker/docker` from v24.0.7 to v24.0.9 +[id="resolved-in-version-444_{context}"] +=== Resolved in version 4.4.4 + +*Release date*: 08 July 2024 + +This release provides the following bug fixes: + +* Fixed an issue in {product-title-short} 4.4.1 where the image scan cache of Sensor was skipped, causing additional load on image registries. ++ +This issue occurred after upgrading {product-title-short} from 4.4.0 to 4.4.1 and enabling the unqualified search registries feature. Scaling Scanner to `0` stopped the traffic, and disabling and re-enabling Scanner resolved the issue. + +* Fixed an issue in {product-title-short} 4.4 where the *Namespace* filter was missing in the *Violations* page, which was previously available in {product-title-short} 4.3 and is critical for efficient filtering of violations. + +This release contains the following updates: + +* The policy introduced in {product-title-short} 4.4 has been updated to reduce noise, especially when using Scanner V4. ++ +The following changes are included: + +** Addition of criteria for fixable vulnerabilities. +** Setting the severity level to _greater than or equal to_ `Important`, which immediately disables the policy. +** Changing the severity level to `High` to prevent mandatory remediation of all critical issues. + +* The _Denial of Service Vulnerability_ policy in the HTTP/2 protocol has been updated and is now disabled by default. To use this policy, you should clone the policy and add the criteria to the _Fixable_ policy before enabling the policy. + +* This release updates the process to ensure that Sensor completes the TLS handshake during secret synchronization. If this does not happen, the process can freeze and leave Sensor with incomplete data stores and a corrupted state, even if Sensor appears healthy. + [id="known-issues-440_{context}"] == Known issues