Skip to content

[RHACS] ROX-24807: Release notes updates for 4.4.4 #78410

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Jul 9, 2024
Merged

[RHACS] ROX-24807: Release notes updates for 4.4.4 #78410

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions modules/common-attributes.adoc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -55,9 +55,9 @@ endif::[]
:osp: Red{nbsp}Hat OpenShift
:olm-first: Operator Lifecycle Manager (OLM)
:olm: OLM
:rhacs-version: 4.4.3
:rhacs-version: 4.4.4
:ocp-supported-version: 4.11
:ocp-latest-version: 4.15
:ocp-latest-version: 4.16
:product-rosa: Red{nbsp}Hat OpenShift Service on AWS
:product-rosa-short: ROSA
:product-title: Red{nbsp}Hat Advanced Cluster Security for Kubernetes
Expand Down
28 changes: 28 additions & 0 deletions release_notes/44-release-notes.adoc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,7 @@ toc::[]
|`4.4.1` | 22 April 2024
|`4.4.2` | 20 May 2024
|`4.4.3` | 11 June 2024
|`4.4.4` | 08 July 2024

|====

Expand Down Expand Up @@ -617,6 +618,33 @@ This release contains the following updates:
** `github.com/containers/image/v5` from v5.29.2 to v5.29.3
** `github.com/docker/docker` from v24.0.7 to v24.0.9

[id="resolved-in-version-444_{context}"]
=== Resolved in version 4.4.4

*Release date*: 08 July 2024

This release provides the following bug fixes:

* Fixed an issue in {product-title-short} 4.4.1 where the image scan cache of Sensor was skipped, causing additional load on image registries.
+
This issue occurred after upgrading {product-title-short} from 4.4.0 to 4.4.1 and enabling the unqualified search registries feature. Scaling Scanner to `0` stopped the traffic, and disabling and re-enabling Scanner resolved the issue.

* Fixed an issue in {product-title-short} 4.4 where the *Namespace* filter was missing in the *Violations* page, which was previously available in {product-title-short} 4.3 and is critical for efficient filtering of violations.

This release contains the following updates:

* The policy introduced in {product-title-short} 4.4 has been updated to reduce noise, especially when using Scanner V4.
+
The following changes are included:

** Addition of criteria for fixable vulnerabilities.
** Setting the severity level to _greater than or equal to_ `Important`, which immediately disables the policy.
** Changing the severity level to `High` to prevent mandatory remediation of all critical issues.

* The _Denial of Service Vulnerability_ policy in the HTTP/2 protocol has been updated and is now disabled by default. To use this policy, you should clone the policy and add the criteria to the _Fixable_ policy before enabling the policy.

* This release updates the process to ensure that Sensor completes the TLS handshake during secret synchronization. If this does not happen, the process can freeze and leave Sensor with incomplete data stores and a corrupted state, even if Sensor appears healthy.

[id="known-issues-440_{context}"]
== Known issues

Expand Down