openshift/openshift-docs
1
0
Fork 0
mirror of https://github.com/openshift/openshift-docs.git synced 2026-02-05 21:46:22 +01:00
Code Issues Releases Activity

Merge pull request #78565 from openshift-cherrypick-robot/cherry-pick-76692-to-enterprise-4.17

Browse Source 
[enterprise-4.17] OSDOCS9493: Updated release notes to include cert-manager 1.14.
This commit is contained in:
Jeana Routh
2024-07-08 10:34:17 -04:00
committed by GitHub
parent 69d180fca1 941b437b86
commit 01475ca05e
1 changed files with 36 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

36
security/cert_manager_operator/cert-manager-operator-release-notes.adoc
View File

@@ -12,6 +12,42 @@ These release notes track the development of {cert-manager-operator}.
For more information, see xref:../../security/cert_manager_operator/index.adoc#cert-manager-operator-about[About the {cert-manager-operator}].
[id="cert-manager-operator-release-notes-1-14-0"]
== {cert-manager-operator} 1.14.0
Issued: 2024-07-08
The following advisory is available for the {cert-manager-operator} 1.14.0:
* link:https://access.redhat.com/errata/RHEA-2024:4360[RHEA-2024:4360]
Version `1.14.0` of the {cert-manager-operator} is based on the upstream cert-manager version `v1.14.5`. For more information, see the link:https://cert-manager.io/docs/releases/release-notes/release-notes-1.14/#v1145[cert-manager project release notes for v1.14.5].
[id="cert-manager-operator-new-features-1-14-0"]
=== New features and enhancements
*FIPS compliance support*
With this release, FIPS mode is now automatically enabled for {cert-manager-operator}. When installed on an {product-title} cluster in FIPS mode, {cert-manager-operator} ensures compatibility without affecting the cluster's FIPS support status.
*NCM issuer*
The {cert-manager-operator} now supports the Nokia NetGuard Certificate Manager (NCM) issuer. The `ncm-issuer` is a cert-manager external issuer that integrates with the NCM PKI system using a Kubernetes controller to sign certificate requests. This integration streamlines the process of obtaining non-self-signed certificates for applications, ensuring their validity and keeping them updated.
[NOTE]
====
The NCM issuer is validated only with version 1.1.1 and the {cert-manager-operator} version 1.14.0. This version handles tasks such as issuance, renewal, and managing certificates for the API server and ingress controller of {product-title} clusters.
====
[id="cert-manager-operator-1-14-0-CVEs"]
=== CVEs
* link:https://access.redhat.com/security/cve/CVE-2023-45288[CVE-2023-45288]
* link:https://access.redhat.com/security/cve/CVE-2024-28180[CVE-2024-28180]
* link:https://access.redhat.com/security/cve/CVE-2020-8559[CVE-2020-8559]
* link:https://access.redhat.com/security/cve/CVE-2024-26147[CVE-2024-26147]
* link:https://access.redhat.com/security/cve/CVE-2024-24783[CVE-2024-24783]
[id="cert-manager-operator-release-notes-1-13-1"]
== {cert-manager-operator} 1.13.1