Red Hat {product-title} provides developers and IT organizations with a hybrid cloud application platform for deploying both new and existing applications on secure, scalable resources with minimal configuration and management. {product-title} supports a wide selection of programming languages and frameworks, such as Java, JavaScript, Python, Ruby, and PHP.
Built on {op-system-base-full} and Kubernetes, {product-title} provides a more secure and scalable multitenant operating system for today’s enterprise-class applications, while delivering integrated application runtimes and libraries. {product-title} enables organizations to meet security, privacy, compliance, and governance requirements.
{product-title} (RHSA-202X:XXXX) is now available. This release uses Kubernetes 1.32 with CRI-O runtime. New features, changes, and known issues that pertain to {product-title} {product-version} are included in this topic.
{product-title} {product-version} clusters are available at https://console.redhat.com/openshift. From the {hybrid-console}, you can deploy {product-title} clusters to either on-premises or cloud environments.
{product-title} {product-version} is supported on {op-system-base-full} 8.8 and a later version of {op-system-base} 8 that is released before End of Life of {product-title} {product-version}. {product-title} {product-version} is also supported on {op-system-first}. To understand {op-system-base} versions used by {op-system}, see {op-system-base} Versions Utilized by {op-system-first} and {product-title} (Knowledgebase article).
You must use {op-system} machines for the control plane, and you can use either {op-system} or {op-system-base} for compute machines. {op-system-base} machines are deprecated in {product-title} 4.16 and will be removed in a future release.
Starting from {product-title} 4.14, the Extended Update Support (EUS) phase for even-numbered releases increases the total available lifecycle to 24 months on all supported architectures, including x86_64, 64-bit ARM (aarch64), {ibm-power-name} (ppc64le), and {ibm-z-name} (s390x) architectures. Beyond this, Red Hat also offers a 12-month additional EUS add-on, denoted as Additional EUS Term 2, that extends the total available lifecycle from 24 months to 36 months. The Additional EUS Term 2 is available on all architecture variants of {product-title}. For more information about support for all versions, see the Red Hat {product-title} Life Cycle Policy.
Commencing with the {product-title} 4.14 release, Red Hat is simplifying the administration and management of Red Hat shipped cluster Operators with the introduction of three new life cycle classifications; Platform Aligned, Platform Agnostic, and Rolling Stream. These life cycle classifications provide additional ease and transparency for cluster administrators to understand the life cycle policies of each Operator and form cluster maintenance and upgrade plans with predictable support boundaries. For more information, see OpenShift Operator Life Cycles.
{product-title} is designed for FIPS. When running {op-system-base-full} or {op-system-first} booted in FIPS mode, {product-title} core components use the {op-system-base} cryptographic libraries that have been submitted to NIST for FIPS 140-2/140-3 Validation on only the x86_64, ppc64le, and s390x architectures.
For more information about the NIST validation program, see Cryptographic Module Validation Program. For the latest NIST status for the individual versions of {op-system-base} cryptographic libraries that have been submitted for validation, see Compliance Activities and Government Standards.
The scope of support for layered and dependent components of {product-title} changes independently of the {product-title} version. To determine the current support status and compatibility for an add-on, refer to its release notes. For more information, see the Red Hat {product-title} Life Cycle Policy.
This release adds improvements related to the following components and concepts:
Because {hcp} releases asynchronously from {product-title}, it has its own release notes. For more information, see {hcp-capital} release notes.
The {ibm-power-name} release on {product-title} {product-version} adds improvements and new capabilities to {product-title} components.
This release introduces support for the following features on {ibm-power-title}:
Starting in {product-title} 4.14, Extended Update Support (EUS) is extended to the {ibm-power-name} and the {ibm-z-name} platform. For more information, see the OpenShift EUS Overview.
| Feature | {ibm-power-name} | {ibm-z-name} and {ibm-linuxone-name} |
|---|---|---|
Adding compute nodes to on-premise clusters using {oc-first} |
Supported |
Supported |
Alternate authentication providers |
Supported |
Supported |
Agent-based Installer |
Supported |
Supported |
Assisted Installer |
Supported |
Supported |
Automatic Device Discovery with Local Storage Operator |
Unsupported |
Supported |
Automatic repair of damaged machines with machine health checking |
Unsupported |
Unsupported |
Cloud controller manager for {ibm-cloud-name} |
Supported |
Unsupported |
Controlling overcommit and managing container density on nodes |
Unsupported |
Unsupported |
CPU manager |
Supported |
Supported |
Cron jobs |
Supported |
Supported |
Descheduler |
Supported |
Supported |
Egress IP |
Supported |
Supported |
Encrypting data stored in etcd |
Supported |
Supported |
FIPS cryptography |
Supported |
Supported |
Helm |
Supported |
Supported |
Horizontal pod autoscaling |
Supported |
Supported |
Hosted control planes |
Supported |
Supported |
IBM Secure Execution |
Unsupported |
Supported |
Installer-provisioned Infrastructure Enablement for {ibm-power-server-name} |
Supported |
Unsupported |
Installing on a single node |
Supported |
Supported |
IPv6 |
Supported |
Supported |
Monitoring for user-defined projects |
Supported |
Supported |
Multi-architecture compute nodes |
Supported |
Supported |
Multi-architecture control plane |
Supported |
Supported |
Multipathing |
Supported |
Supported |
Network-Bound Disk Encryption - External Tang Server |
Supported |
Supported |
Non-volatile memory express drives (NVMe) |
Supported |
Unsupported |
nx-gzip for Power10 (Hardware Acceleration) |
Supported |
Unsupported |
oc-mirror plugin |
Supported |
Supported |
OpenShift CLI ( |
Supported |
Supported |
Operator API |
Supported |
Supported |
OpenShift Virtualization |
Unsupported |
Supported |
OVN-Kubernetes, including IPsec encryption |
Supported |
Supported |
PodDisruptionBudget |
Supported |
Supported |
Precision Time Protocol (PTP) hardware |
Unsupported |
Unsupported |
{openshift-local-productname} |
Unsupported |
Unsupported |
Scheduler profiles |
Supported |
Supported |
Secure Boot |
Unsupported |
Supported |
Stream Control Transmission Protocol (SCTP) |
Supported |
Supported |
Support for multiple network interfaces |
Supported |
Supported |
The |
Supported |
Supported |
Three-node cluster support |
Supported |
Supported |
Topology Manager |
Supported |
Unsupported |
z/VM Emulated FBA devices on SCSI disks |
Unsupported |
Supported |
4K FCP block device |
Supported |
Supported |
| Feature | {ibm-power-name} | {ibm-z-name} and {ibm-linuxone-name} |
|---|---|---|
Persistent storage using iSCSI |
Supported [1] |
Supported [1],[2] |
Persistent storage using local volumes (LSO) |
Supported [1] |
Supported [1],[2] |
Persistent storage using hostPath |
Supported [1] |
Supported [1],[2] |
Persistent storage using Fibre Channel |
Supported [1] |
Supported [1],[2] |
Persistent storage using Raw Block |
Supported [1] |
Supported [1],[2] |
Persistent storage using EDEV/FBA |
Supported [1] |
Supported [1],[2] |
-
Persistent shared storage must be provisioned by using either {rh-storage-first} or other supported storage protocols.
-
Persistent non-shared storage must be provisioned by using local storage, such as iSCSI, FC, or by using LSO with DASD, FCP, or EDEV/FBA.
| Feature | {ibm-power-name} | {ibm-z-name} and {ibm-linuxone-name} |
|---|---|---|
{cert-manager-operator} |
Supported |
Supported |
Cluster Logging Operator |
Supported |
Supported |
Cluster Resource Override Operator |
Supported |
Supported |
Compliance Operator |
Supported |
Supported |
Cost Management Metrics Operator |
Supported |
Supported |
File Integrity Operator |
Supported |
Supported |
HyperShift Operator |
Supported |
Supported |
{ibm-power-server-name} Block CSI Driver Operator |
Supported |
Unsupported |
Ingress Node Firewall Operator |
Supported |
Supported |
Local Storage Operator |
Supported |
Supported |
MetalLB Operator |
Supported |
Supported |
Network Observability Operator |
Supported |
Supported |
NFD Operator |
Supported |
Supported |
NMState Operator |
Supported |
Supported |
OpenShift Elasticsearch Operator |
Supported |
Supported |
Vertical Pod Autoscaler Operator |
Supported |
Supported |
| Feature | {ibm-power-name} | {ibm-z-name} and {ibm-linuxone-name} |
|---|---|---|
Bridge |
Supported |
Supported |
Host-device |
Supported |
Supported |
IPAM |
Supported |
Supported |
IPVLAN |
Supported |
Supported |
| Feature | {ibm-power-name} | {ibm-z-name} and {ibm-linuxone-name} |
|---|---|---|
Cloning |
Supported |
Supported |
Expansion |
Supported |
Supported |
Snapshot |
Supported |
Supported |
The Machine Config Server (MCS) CA bundle created by the installation program is now stored in the machine-config-server-ca config map in the openshift-machine-config-operator namespace. The bundle was previously stored in the root-ca configmap in the kube-system namespace. The root-ca configmap is no longer used in a cluster that cluster upgrades to {product-title} {product-version}. This change was made to make it clear that this CA bundle is managed by the Machine Config Operator (MCO).
The MCS signing key is stored in the machine-config-server-ca secret in the openshift-machine-config-operator namespace.
The MCS CA and MCS cert are valid for 10 years and are automatically rotated by the MCO at approximately 8 years. Upon installation or upgrade to {product-title} {product-version}, the CA signing key is not retained. As a result, the CA bundle is immediately considered expired when the MCO certificate controller comes up. This expiration causes an immediate certificate rotation, even if the cluster is not 10 years old. After that point, the next rotation takes place at the standard 8 year period.
For more information about the MCO certificates, see ../security_and_compliance/certificate-types-and-descriptions.adoc#cert-types-machine-config-operator-certificates
We will have details here when {product-title} {product-version} is released.
We will have details here when {product-title} {product-version} is released.
With this release, you can use a dual-port network interface controller (NIC) to improve redundancy for Precision Time Protocol (PTP) ordinary clocks. Available as a Technology Preview, in a dual-port NIC configuration for an ordinary clock, if one port fails, the standby port takes over, maintaining PTP timing synchronization.
|
Note
|
You can configure PTP ordinary clocks with added redundancy on |
For more information, see Using dual-port NICs to improve redundancy for PTP ordinary clocks.
With this update, you can specify larger kernel page sizes to improve performance for memory-intensive, high-performance workloads on ARM infrastructure nodes with the realtime kernel disabled. For more information, see Configuring kernel page sizes.
Some features available in previous releases have been deprecated or removed.
Deprecated functionality is still included in {product-title} and continues to be supported; however, it will be removed in a future release of this product and is not recommended for new deployments. For the most recent list of major functionality deprecated and removed within {product-title} {product-version}, refer to the table below. Additional details for more functionality that has been deprecated and removed are listed after the table.
In the following tables, features are marked with the following statuses:
-
Not Available
-
Technology Preview
-
General Availability
-
Deprecated
-
Removed
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Bare Metal Event Relay Operator |
Removed |
Removed |
Removed |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Cluster Samples Operator |
Deprecated |
Deprecated |
Deprecated |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
|
Deprecated |
Deprecated |
Deprecated |
CoreDNS wildcard queries for the |
Deprecated |
Deprecated |
Deprecated |
|
Deprecated |
Deprecated |
Deprecated |
|
Deprecated |
Deprecated |
Deprecated |
|
Deprecated |
Deprecated |
Deprecated |
Package-based {op-system-base} compute machines |
Deprecated |
Deprecated |
Deprecated |
|
Deprecated |
Deprecated |
Deprecated |
Installing a cluster on {aws-short} with compute nodes in {aws-short} Outposts |
Deprecated |
Deprecated |
Deprecated |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Placeholder |
Status |
Status |
Status |
| Feature | 4.17 | 4.18 | 4.19 |
|---|
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
OpenShift SDN network plugin |
Removed |
Removed |
Removed |
iptables |
Deprecated |
Deprecated |
Deprecated |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
|
Deprecated |
Deprecated |
Deprecated |
Kubernetes topology label |
Deprecated |
Deprecated |
Deprecated |
Kubernetes topology label |
Deprecated |
Deprecated |
Deprecated |
cgroup v1 |
Deprecated |
Deprecated |
Deprecated |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
oc-mirror plugin v1 |
General Availability |
Deprecated |
Deprecated |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Operator SDK |
Deprecated |
Deprecated |
Deprecated |
Scaffolding tools for Ansible-based Operator projects |
Deprecated |
Deprecated |
Deprecated |
Scaffolding tools for Helm-based Operator projects |
Deprecated |
Deprecated |
Deprecated |
Scaffolding tools for Go-based Operator projects |
Deprecated |
Deprecated |
Deprecated |
Scaffolding tools for Hybrid Helm-based Operator projects |
Deprecated |
Removed |
Removed |
Scaffolding tools for Java-based Operator projects |
Deprecated |
Removed |
Removed |
SQLite database format for Operator catalogs |
Deprecated |
Deprecated |
Deprecated |
| Feature | 4.17 | 4.18 | 4.19 |
|---|
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
AliCloud Disk CSI Driver Operator |
Removed |
Removed |
Removed |
Shared Resources CSI Driver Operator |
Deprecated |
Removed |
Removed |
| Feature | 4.17 | 4.18 | 4.19 |
|---|
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Patternfly 4 |
Deprecated |
Deprecated |
Deprecated |
React Router 5 |
Deprecated |
Deprecated |
Deprecated |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
|
Deprecated |
Deprecated |
Deprecated |
-
Previously, if you attempted to install an {aws-first} cluster with minimum privileges and you did not specify an instance type in the
install-config.yamlfile, installation of the cluster failed. This issue happened because the installation program could not find supported instance types that the cluster uses in availability zones. For example, them6i.xlargedefault instance type was unavailable inap-southeast-4andeu-south-2availability zones. With this release, theopenshift-installprogram now requires theec2:DescribeInstanceTypeOfferings{aws-short} permission to prevent the installation of the cluster from failing in situations wherem6i.xlargeor another supported instance type is unavailable in a supported availability zone. (OCPBUGS-46596)
Some features in this release are currently in Technology Preview. These experimental features are not intended for production use. Note the following scope of support on the Red Hat Customer Portal for these features:
In the following tables, features are marked with the following statuses:
-
Not Available
-
Technology Preview
-
General Availability
-
Deprecated
-
Removed
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Pod security admission restricted enforcement |
Technology Preview |
Technology Preview |
Technology Preview |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Accelerated provisioning of {ztp} |
Technology Preview |
Technology Preview |
Technology Preview |
Enabling disk encryption with TPM and PCR protection |
Technology Preview |
Technology Preview |
Technology Preview |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Adding kernel modules to nodes with kvc |
Technology Preview |
Technology Preview |
Technology Preview |
Enabling NIC partitioning for SR-IOV devices |
General Availability |
General Availability |
General Availability |
User-defined labels and tags for {gcp-first} |
General Availability |
General Availability |
General Availability |
Installing a cluster on Alibaba Cloud by using Assisted Installer |
Technology Preview |
Technology Preview |
Technology Preview |
Mount shared entitlements in BuildConfigs in RHEL |
Technology Preview |
Technology Preview |
Technology Preview |
Selectable Cluster Inventory |
Technology Preview |
Technology Preview |
Technology Preview |
Installing a cluster on {gcp-short} using the Cluster API implementation |
General Availability |
General Availability |
General Availability |
Installing a cluster on {vmw-full} with multiple network interface controllers |
Not Available |
Technology Preview |
Technology Preview |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Improved MCO state reporting ( |
Technology Preview |
Technology Preview |
Technology Preview |
On-cluster RHCOS image layering |
Technology Preview |
Technology Preview |
Technology Preview |
Node disruption policies |
General Availability |
General Availability |
General Availability |
Updating boot images for GCP clusters |
General Availability |
General Availability |
General Availability |
Updating boot images for AWS clusters |
Technology Preview |
General Availability |
General Availability |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Managing machines with the Cluster API for {aws-full} |
Technology Preview |
Technology Preview |
Technology Preview |
Managing machines with the Cluster API for {gcp-full} |
Technology Preview |
Technology Preview |
Technology Preview |
Managing machines with the Cluster API for {azure-full} |
Not Available |
Technology Preview |
Technology Preview |
Managing machines with the Cluster API for {vmw-full} |
Technology Preview |
Technology Preview |
Technology Preview |
Cloud controller manager for {ibm-power-server-name} |
Technology Preview |
Technology Preview |
Technology Preview |
Adding multiple subnets to an existing {vmw-full} cluster by using compute machine sets |
Not Available |
Technology Preview |
Technology Preview |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
Metrics Collection Profiles |
Technology Preview |
Technology Preview |
Technology Preview |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
{ols-official} in the {product-title} web console |
Technology Preview |
Technology Preview |
Technology Peview |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
|
Technology Preview |
Technology Preview |
Technology Preview |
|
Technology Preview |
Technology Preview |
Technology Preview |
|
Technology Preview |
Technology Preview |
Technology Preview |
Support for configuring the image stream import mode behavior |
Not Available |
Technology Preview |
Technology Preview |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
eBPF manager Operator |
Technology Preview |
Technology Preview |
Technology Preview |
Advertise using L2 mode the MetalLB service from a subset of nodes, using a specific pool of IP addresses |
Technology Preview |
Technology Preview |
Technology Preview |
Updating the interface-specific safe sysctls list |
Technology Preview |
Technology Preview |
Technology Preview |
Egress service custom resource |
Technology Preview |
Technology Preview |
Technology Preview |
VRF specification in |
Technology Preview |
Technology Preview |
Technology Preview |
VRF specification in |
Technology Preview |
Technology Preview |
Technology Preview |
Host network settings for SR-IOV VFs |
General Availability |
General Availability |
General Availability |
Integration of MetalLB and FRR-K8s |
General Availability |
General Availability |
General Availability |
Automatic leap seconds handling for PTP grandmaster clocks |
General Availability |
General Availability |
General Availability |
PTP events REST API v2 |
General Availability |
General Availability |
General Availability |
Customized |
General Availability |
General Availability |
General Availability |
Live migration to OVN-Kubernetes from OpenShift SDN |
General Availability |
Not Available |
Not Available |
User-defined network segmentation |
Technology Preview |
Technology Preview |
General Availablity |
Dynamic configuration manager |
Not Available |
Technology Preview |
Technology Preview |
SR-IOV Network Operator support for Intel C741 Emmitsburg Chipset |
Not Available |
Technology Preview |
Technology Preview |
Gateway API and Istio for Ingress management |
Not Available |
Not Available |
General Availability |
Dual-port NIC for PTP ordinary clock |
Not Available |
Not Available |
Technology Preview |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
|
Technology Preview |
Technology Preview |
Technology Preview |
sigstore support |
Technology Preview |
Technology Preview |
Technology Preview |
oc) Technology Preview tracker
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
oc-mirror plugin v2 |
Technology Preview |
General Availability |
General Availability |
oc-mirror plugin v2 enclave support |
Technology Preview |
General Availability |
General Availability |
oc-mirror plugin v2 delete functionality |
Technology Preview |
General Availability |
General Availability |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
{olmv1-first} |
Technology Preview |
General Availability |
General Availability |
{olmv1} runtime validation of container images using sigstore signatures |
Not Available |
Technology Preview |
Technology Preview |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
{olmv1-first} |
Technology Preview |
General Availability |
General Availability |
Scaffolding tools for Hybrid Helm-based Operator projects |
Deprecated |
Removed |
Removed |
Scaffolding tools for Java-based Operator projects |
Deprecated |
Removed |
Removed |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
{rh-openstack} integration into the {cluster-capi-operator} |
Technology Preview |
Technology Preview |
Technology Preview |
Control plane with |
General Availability |
General Availability |
General Availability |
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
{factory-prestaging-tool} |
Technology Preview |
Technology Preview |
Technology Preview |
Hyperthreading-aware CPU manager policy |
Technology Preview |
Technology Preview |
Technology Preview |
Mount namespace encapsulation |
Technology Preview |
Technology Preview |
Technology Preview |
Node Observability Operator |
Technology Preview |
Technology Preview |
Technology Preview |
Increasing the etcd database size |
Technology Preview |
Technology Preview |
Technology Preview |
Using {rh-rhacm} |
Technology Preview |
Technology Preview |
Technology Preview |
Pinned Image Sets |
Technology Preview |
Technology Preview |
Technology Preview |
| Feature | 4.17 | 4.18 | 4.19 |
|---|
| Feature | 4.17 | 4.18 | 4.19 |
|---|---|---|---|
AWS EFS storage CSI usage metrics |
General Availability |
General Availability |
General Availability |
Automatic device discovery and provisioning with Local Storage Operator |
Technology Preview |
Technology Preview |
Technology Preview |
Azure File CSI snapshot support |
Technology Preview |
Technology Preview |
Technology Preview |
Shared Resources CSI Driver in OpenShift Builds |
Technology Preview |
Technology Preview |
Technology Preview |
{secrets-store-operator} |
Technology Preview |
General Availability |
General Availability |
CIFS/SMB CSI Driver Operator |
Technology Preview |
General Availability |
General Availability |
VMware vSphere multiple vCenter support |
Technology Preview |
General Availability |
General Availability |
Disabling/enabling storage on vSphere |
Technology Preview |
Technology Preview |
Technology Preview |
RWX/RWO SELinux Mount |
Developer Preview |
Developer Preview |
Developer Preview |
Migrating CNS Volumes Between Datastores |
Developer Preview |
Developer Preview |
Developer Preview |
CSI volume group snapshots |
Not Available |
Technology Preview |
Technology Preview |
GCP PD supports C3/N4 instance types and hyperdisk-balanced disks |
Not Available |
General Availability |
General Availability |
GCP Filestore supports Workload Identity |
General Availability |
General Availability |
General Availability |
OpenStack Manila support for CSI resize |
Not Available |
General Availability |
General Availability |
Security, bug fix, and enhancement updates for {product-title} {product-version} are released as asynchronous errata through the Red Hat Network. All {product-title} {product-version} errata is available on the Red Hat Customer Portal. See the {product-title} Life Cycle for more information about asynchronous errata.
Red Hat Customer Portal users can enable errata notifications in the account settings for Red Hat Subscription Management (RHSM). When errata notifications are enabled, users are notified through email whenever new errata relevant to their registered systems are released.
|
Note
|
Red Hat Customer Portal user accounts must have systems registered and consuming {product-title} entitlements for {product-title} errata notification emails to generate. |
This section will continue to be updated over time to provide notes on enhancements and bug fixes for future asynchronous errata releases of {product-title} {product-version}. Versioned asynchronous releases, for example with the form {product-title} {product-version}.z, will be detailed in subsections. In addition, releases in which the errata text cannot fit in the space provided by the advisory will be detailed in subsections that follow.
|
Important
|
For any {product-title} release, always review the instructions on updating your cluster properly. |
RHXA-2025:XXXX - {product-title} {product-version}.0 image release, bug fix, and security update advisory
Issued: DAY-MONTH-YEAR
{product-title} release {product-version}.0, which includes security updates, is now available. The list of bug fixes that are included in the update is documented in the RHXA-2025:XXXX advisory. The RPM packages that are included in the update are provided by the RHXA-2025:XXXX advisory.
Space precluded documenting all of the container images for this release in the advisory.
You can view the container images in this release by running the following command:
$ oc adm release info 4.19.0 --pullspecsTo update an {product-title} 4.17 cluster to this latest release, see Updating a cluster using the CLI.