# 4.14.0-0.okd-scos-2023-10-19-123226 Created: 2023-10-20 09:31:03 +0000 UTC Image Digest: `sha256:57f8b90ab8012c73e5a1abb3228ee662c6f3242eebc9fc48ef57210075bea626` Promoted from registry.ci.openshift.org/origin/release-scos:4.14.0-0.okd-scos-2023-10-19-123226 ## Changes from 4.14.0-0.okd-scos-2023-10-11-044258 ### Components * Kubernetes 1.27.6 * CentOS Stream CoreOS upgraded from 414.9.202310101932-0 to 414.9.202310141932-0 ### Rebuilt images without code change * centos-stream-coreos-9 `sha256:ac4c33874bd865a20be4cc7b13f88165e5d4e94752fa06c1e1ad7487940fd5d1` * centos-stream-coreos-9-extensions `sha256:a1409ba49bb4596d70b85abbd126205f9cfa8f545f427bd1b6dc0c849aed7613` * [machine-api-operator](https://github.com/openshift/machine-api-operator) git [525f8e5b](https://github.com/openshift/machine-api-operator/commit/525f8e5b89947b38ce07a6a6a3d194bf780d5075) `sha256:b6a0e10d3a01a85e239220c13e3ed4516b77b906d01c5b68562970d6886b9fae` * [machine-image-customization-controller](https://github.com/openshift/image-customization-controller) git [9dd02305](https://github.com/openshift/image-customization-controller/commit/9dd02305b4cbaf521dd73fa1a95e4b4a9e8a01c2) `sha256:9a5e5e4accd4632638250c344cfaf0447e6fc2eb1ce3612038323db8004f9be9` * machine-os-content `sha256:ac4c33874bd865a20be4cc7b13f88165e5d4e94752fa06c1e1ad7487940fd5d1` ### [alibaba-cloud-csi-driver](https://github.com/openshift/alibaba-cloud-csi-driver/tree/3dc363d364c43c1fb03e223147e25d9057273428) * [OCPBUGS-21350](https://issues.redhat.com/browse/OCPBUGS-21350): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#36](https://github.com/openshift/alibaba-cloud-csi-driver/pull/36) * [Full changelog](https://github.com/openshift/alibaba-cloud-csi-driver/compare/92be21f26e64b8320a10a0f324d52f482a2acbfa...3dc363d364c43c1fb03e223147e25d9057273428) ### [alibaba-disk-csi-driver-operator](https://github.com/openshift/alibaba-disk-csi-driver-operator/tree/7e0204aeee1770a98afb7ace4f3ccb5568c906e8) * [OCPBUGS-21443](https://issues.redhat.com/browse/OCPBUGS-21443): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#64](https://github.com/openshift/alibaba-disk-csi-driver-operator/pull/64) * [Full changelog](https://github.com/openshift/alibaba-disk-csi-driver-operator/compare/5a9bbe6a145b8d8f1e1df977cd44d748cf0990d2...7e0204aeee1770a98afb7ace4f3ccb5568c906e8) ### [aws-ebs-csi-driver](https://github.com/openshift/aws-ebs-csi-driver/tree/2e2e2774b971d215c3ded5eef925980bac047253) * [OCPBUGS-20957](https://issues.redhat.com/browse/OCPBUGS-20957): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#239](https://github.com/openshift/aws-ebs-csi-driver/pull/239) * [Full changelog](https://github.com/openshift/aws-ebs-csi-driver/compare/b0eaa31073158d843b972a16c9a53a5b517a4178...2e2e2774b971d215c3ded5eef925980bac047253) ### [aws-ebs-csi-driver-operator](https://github.com/openshift/aws-ebs-csi-driver-operator/tree/024bec5b1d318b874fd93d6e57018467d26333d1) * [OCPBUGS-21057](https://issues.redhat.com/browse/OCPBUGS-21057): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#280](https://github.com/openshift/aws-ebs-csi-driver-operator/pull/280) * [Full changelog](https://github.com/openshift/aws-ebs-csi-driver-operator/compare/a5bac21655fe994247d5fcb7a66bf271437b68a8...024bec5b1d318b874fd93d6e57018467d26333d1) ### [azure-disk-csi-driver](https://github.com/openshift/azure-disk-csi-driver/tree/b19eec11854e89a3e45f27455ce54d19c25f375b) * [OCPBUGS-20701](https://issues.redhat.com/browse/OCPBUGS-20701): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#54](https://github.com/openshift/azure-disk-csi-driver/pull/54) * [Full changelog](https://github.com/openshift/azure-disk-csi-driver/compare/9fa4016e0a53f4e218db6ea006d562784193fad3...b19eec11854e89a3e45f27455ce54d19c25f375b) ### [azure-file-csi-driver](https://github.com/openshift/azure-file-csi-driver/tree/f401f53684e5aa1e94036612770ca7ee10f55b24) * [OCPBUGS-20884](https://issues.redhat.com/browse/OCPBUGS-20884): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#37](https://github.com/openshift/azure-file-csi-driver/pull/37) * [Full changelog](https://github.com/openshift/azure-file-csi-driver/compare/5112d391f1b121d8b59c478fe2505e44440441fb...f401f53684e5aa1e94036612770ca7ee10f55b24) ### [azure-file-csi-driver-operator](https://github.com/openshift/azure-file-csi-driver-operator/tree/43838ae6c329e7d818c19ec59dfba5abde7535f6) * [OCPBUGS-20983](https://issues.redhat.com/browse/OCPBUGS-20983): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#76](https://github.com/openshift/azure-file-csi-driver-operator/pull/76) * [Full changelog](https://github.com/openshift/azure-file-csi-driver-operator/compare/8597fbd31f45dd1e387faa220eeb1a86ae618405...43838ae6c329e7d818c19ec59dfba5abde7535f6) ### [baremetal-installer, installer, installer-artifacts](https://github.com/openshift/installer/tree/d9e0b2d88a21a13a9b76a182b76f9fc4d21359ea) * [OCPBUGS-20396](https://issues.redhat.com/browse/OCPBUGS-20396): Unable to disable external CCM for platform external [#7594](https://github.com/openshift/installer/pull/7594) * [OCPBUGS-20522](https://issues.redhat.com/browse/OCPBUGS-20522): Use changes to AgentClusterInstall during loading [#7588](https://github.com/openshift/installer/pull/7588) * Enforcing the serial execution of the integration tests [#7598](https://github.com/openshift/installer/pull/7598) * [OCPBUGS-20581](https://issues.redhat.com/browse/OCPBUGS-20581): enable cloud controller manager type to be defined [#7581](https://github.com/openshift/installer/pull/7581) * [OCPBUGS-20441](https://issues.redhat.com/browse/OCPBUGS-20441): Warn about host and target compatibility [#7583](https://github.com/openshift/installer/pull/7583) * [OCPBUGS-20345](https://issues.redhat.com/browse/OCPBUGS-20345): Enable serial console for external OCI platform [#7569](https://github.com/openshift/installer/pull/7569) * [OCPBUGS-20401](https://issues.redhat.com/browse/OCPBUGS-20401): always write AWS cloud.conf [#7578](https://github.com/openshift/installer/pull/7578) * [Full changelog](https://github.com/openshift/installer/compare/19ecee13ee6377d41aad9b4b9056600dd1838265...d9e0b2d88a21a13a9b76a182b76f9fc4d21359ea) ### [baremetal-operator](https://github.com/openshift/baremetal-operator/tree/911a1be7478c203560e9219af16fae3b1cca5a63) * [OCPBUGS-20315](https://issues.redhat.com/browse/OCPBUGS-20315): Add an explicit Architecture field [#304](https://github.com/openshift/baremetal-operator/pull/304) * [Full changelog](https://github.com/openshift/baremetal-operator/compare/8119b0408ce90f7f44af9531dde396803ef8429d...911a1be7478c203560e9219af16fae3b1cca5a63) ### [cli, cli-artifacts, deployer, tools](https://github.com/openshift/oc/tree/4a942f7ce874c894fda9cd3f162d1e58428364fa) * [OCPBUGS-21611](https://issues.redhat.com/browse/OCPBUGS-21611): Bump golang.org/x/net to v0.17.0 [#1579](https://github.com/openshift/oc/pull/1579) * [OCPBUGS-20258](https://issues.redhat.com/browse/OCPBUGS-20258): Updating excluded list of unsupported oc adm commands in MicroShift [#1561](https://github.com/openshift/oc/pull/1561) * [Full changelog](https://github.com/openshift/oc/compare/1c47b7e520a71227782d86ba83a9bf3309191f3a...4a942f7ce874c894fda9cd3f162d1e58428364fa) ### [cluster-cloud-controller-manager-operator](https://github.com/openshift/cluster-cloud-controller-manager-operator/tree/6036333a63fbc93726ae704f1af359af49ab0987) * [OCPBUGS-19790](https://issues.redhat.com/browse/OCPBUGS-19790): Additional permissions for internal load balancer on STS [#288](https://github.com/openshift/cluster-cloud-controller-manager-operator/pull/288) * [Full changelog](https://github.com/openshift/cluster-cloud-controller-manager-operator/compare/59465af14f113db3c63ccd2c1f7b4b29c149e74f...6036333a63fbc93726ae704f1af359af49ab0987) ### [cluster-config-operator](https://github.com/openshift/cluster-config-operator/tree/fa99c083c1e6044855246c18042e6da2476964bb) * [OCPBUGS-20439](https://issues.redhat.com/browse/OCPBUGS-20439): Remove Build CRD [#363](https://github.com/openshift/cluster-config-operator/pull/363) * [Full changelog](https://github.com/openshift/cluster-config-operator/compare/581a2d3b0e204d1f506f2ab8cf7ac81c40d07fbf...fa99c083c1e6044855246c18042e6da2476964bb) ### [cluster-control-plane-machine-set-operator](https://github.com/openshift/cluster-control-plane-machine-set-operator/tree/3b946f36550d499537e551f353529e51044b9868) * [OCPBUGS-20408](https://issues.redhat.com/browse/OCPBUGS-20408): fix: e2e: add gcp custom type to test framework [#247](https://github.com/openshift/cluster-control-plane-machine-set-operator/pull/247) * [Full changelog](https://github.com/openshift/cluster-control-plane-machine-set-operator/compare/edb6246a9b0e9a250d9a66475f21b4830e60ba5a...3b946f36550d499537e551f353529e51044b9868) ### [cluster-csi-snapshot-controller-operator](https://github.com/openshift/cluster-csi-snapshot-controller-operator/tree/5d8bae88fdceefd3cc6e9befe3da641839403d9c) * [OCPBUGS-21477](https://issues.redhat.com/browse/OCPBUGS-21477): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#167](https://github.com/openshift/cluster-csi-snapshot-controller-operator/pull/167) * [Full changelog](https://github.com/openshift/cluster-csi-snapshot-controller-operator/compare/d8632d0f509eee4989561b0760b2c5ba7f7daf0f...5d8bae88fdceefd3cc6e9befe3da641839403d9c) ### [cluster-etcd-operator](https://github.com/openshift/cluster-etcd-operator/tree/a30b074095df7195ed0126bcd212b74114a88ee9) * [OCPBUGS-19499](https://issues.redhat.com/browse/OCPBUGS-19499): prioritize podman pull in etcdctl dl [#1133](https://github.com/openshift/cluster-etcd-operator/pull/1133) * [Full changelog](https://github.com/openshift/cluster-etcd-operator/compare/ccb176348edb194b9ce2f22edeedc74e27cd8f23...a30b074095df7195ed0126bcd212b74114a88ee9) ### [cluster-kube-controller-manager-operator](https://github.com/openshift/cluster-kube-controller-manager-operator/tree/78354fc395484f25482319281fd48a2de4d5c40b) * [OCPBUGS-21088](https://issues.redhat.com/browse/OCPBUGS-21088): Bump deps to address CVE-2023-44487 [#756](https://github.com/openshift/cluster-kube-controller-manager-operator/pull/756) * [Full changelog](https://github.com/openshift/cluster-kube-controller-manager-operator/compare/ba1ef05c11c467896e3eaf167ad43917ff38cc1d...78354fc395484f25482319281fd48a2de4d5c40b) ### [cluster-kube-scheduler-operator](https://github.com/openshift/cluster-kube-scheduler-operator/tree/dd7f55355efb68f3d3566a9405ef70530140e065) * [OCPBUGS-21737](https://issues.redhat.com/browse/OCPBUGS-21737): Bump deps to address CVE-2023-44487 [#501](https://github.com/openshift/cluster-kube-scheduler-operator/pull/501) * [Full changelog](https://github.com/openshift/cluster-kube-scheduler-operator/compare/90992f08144cbf9ee137108dfaac15e4bb9c2672...dd7f55355efb68f3d3566a9405ef70530140e065) ### [cluster-monitoring-operator](https://github.com/openshift/cluster-monitoring-operator/tree/6a1a0ffab4bfe635ec06c2b800f9eff450aac118) * [OCPBUGS-21264](https://issues.redhat.com/browse/OCPBUGS-21264): upgrade golang.org/x/net to v0.17.0 [#2121](https://github.com/openshift/cluster-monitoring-operator/pull/2121) * [Full changelog](https://github.com/openshift/cluster-monitoring-operator/compare/6bcad80b6da754012c78a49f01e2725fb620ff6c...6a1a0ffab4bfe635ec06c2b800f9eff450aac118) ### [cluster-network-operator](https://github.com/openshift/cluster-network-operator/tree/5572bce9c04feaf970862db03fe4c4fe03b912b4) * [OCPBUGS-20472](https://issues.redhat.com/browse/OCPBUGS-20472): hosted cluster upgrade failure from 4.13 stable to 4.14 [#2063](https://github.com/openshift/cluster-network-operator/pull/2063) * [Full changelog](https://github.com/openshift/cluster-network-operator/compare/ed997d2e9698a1b6fa1c187b1eb1d5c4a697cc08...5572bce9c04feaf970862db03fe4c4fe03b912b4) ### [cluster-olm-operator](https://github.com/openshift/cluster-olm-operator/tree/9e05f328825215a8ad58c9023c0f9d62c843c5aa) * [OCPBUGS-21526](https://issues.redhat.com/browse/OCPBUGS-21526): Bump golang.org/x/net to v0.17.0 [#33](https://github.com/openshift/cluster-olm-operator/pull/33) * [Full changelog](https://github.com/openshift/cluster-olm-operator/compare/377bbaeb1bb5ed6ce295aae1fea9e906dced6220...9e05f328825215a8ad58c9023c0f9d62c843c5aa) ### [cluster-openshift-controller-manager-operator](https://github.com/openshift/cluster-openshift-controller-manager-operator/tree/d6ded7f422c87ceea152a22976833f4148d9b954) * [OCPBUGS-20439](https://issues.redhat.com/browse/OCPBUGS-20439): Include Build CRD in manifests [#307](https://github.com/openshift/cluster-openshift-controller-manager-operator/pull/307) * [Full changelog](https://github.com/openshift/cluster-openshift-controller-manager-operator/compare/7f0f4f9c1acbb5d40485e4806f1b1dea39bb4855...d6ded7f422c87ceea152a22976833f4148d9b954) ### [cluster-platform-operators-manager](https://github.com/openshift/platform-operators/tree/08fb27e72e32ea0a06ab02b3b746114148d96c25) * [OCPBUGS-21759](https://issues.redhat.com/browse/OCPBUGS-21759): switch to bingo for dependency management (and bump golangci-lint@v1.51.0) [#98](https://github.com/openshift/platform-operators/pull/98) * [OCPBUGS-21019](https://issues.redhat.com/browse/OCPBUGS-21019): Bump golang.org/x/net to v0.17.0 [#96](https://github.com/openshift/platform-operators/pull/96) * [Full changelog](https://github.com/openshift/platform-operators/compare/351aa1ed1e6a7c53d6aa016f6231124e6128f554...08fb27e72e32ea0a06ab02b3b746114148d96c25) ### [cluster-policy-controller](https://github.com/openshift/cluster-policy-controller/tree/8af8cf302764c912993869db399b22f6c53b52c5) * [OCPBUGS-21122](https://issues.redhat.com/browse/OCPBUGS-21122): Bump deps to address CVE-2023-44487 [#134](https://github.com/openshift/cluster-policy-controller/pull/134) * [Full changelog](https://github.com/openshift/cluster-policy-controller/compare/b3cb22fa48308962b4b520cd3ae694967c769bae...8af8cf302764c912993869db399b22f6c53b52c5) ### [cluster-storage-operator](https://github.com/openshift/cluster-storage-operator/tree/dbb1514dbf9923c56a4a198374cc59e45f9bc0cc) * [OCPBUGS-21300](https://issues.redhat.com/browse/OCPBUGS-21300): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#405](https://github.com/openshift/cluster-storage-operator/pull/405) * [Full changelog](https://github.com/openshift/cluster-storage-operator/compare/18bb6aa272ec729f6c7ce94a4dfff12d5f211f8e...dbb1514dbf9923c56a4a198374cc59e45f9bc0cc) ### [console](https://github.com/openshift/console/tree/2656b27e4aeba660cd8b57194a81ec5eb8058204) * [OCPBUGS-19898](https://issues.redhat.com/browse/OCPBUGS-19898): fix ResourceLog permissions when impersonating [#13203](https://github.com/openshift/console/pull/13203) * [Full changelog](https://github.com/openshift/console/compare/3724a698e71340d3ecbb436c58ac5e716ea268bd...2656b27e4aeba660cd8b57194a81ec5eb8058204) ### [csi-driver-shared-resource, csi-driver-shared-resource-webhook](https://github.com/openshift/csi-driver-shared-resource/tree/740b4427f2c3d72f47c0cd7b9af6b9c51c009c31) * [OCPBUGS-20734](https://issues.redhat.com/browse/OCPBUGS-20734): bump golang.org/x/net to v0.17.0 [#146](https://github.com/openshift/csi-driver-shared-resource/pull/146) * [Full changelog](https://github.com/openshift/csi-driver-shared-resource/compare/19ba62783892161cbe39f46dd923df5061d372ad...740b4427f2c3d72f47c0cd7b9af6b9c51c009c31) ### [csi-driver-shared-resource-operator](https://github.com/openshift/csi-driver-shared-resource-operator/tree/73ddf3e313dbcec4238657af9b4237b405b16c4a) * [OCPBUGS-20825](https://issues.redhat.com/browse/OCPBUGS-20825): bump golang.org/x/net to v0.17.0 [#86](https://github.com/openshift/csi-driver-shared-resource-operator/pull/86) * [Full changelog](https://github.com/openshift/csi-driver-shared-resource-operator/compare/d340e598d77b2a9f95be2161a45a95c36f95b416...73ddf3e313dbcec4238657af9b4237b405b16c4a) ### [csi-external-attacher](https://github.com/openshift/csi-external-attacher/tree/06e8ce0d36f7c23f0906327cd66ec6bd15165366) * [OCPBUGS-21177](https://issues.redhat.com/browse/OCPBUGS-21177): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#60](https://github.com/openshift/csi-external-attacher/pull/60) * [Full changelog](https://github.com/openshift/csi-external-attacher/compare/a8645eba126ccd41300fbf629db352085e2a02c4...06e8ce0d36f7c23f0906327cd66ec6bd15165366) ### [csi-external-provisioner](https://github.com/openshift/csi-external-provisioner/tree/78a710fd2ccd6f87f7789c314349192d063f9f37) * [OCPBUGS-20775](https://issues.redhat.com/browse/OCPBUGS-20775): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#72](https://github.com/openshift/csi-external-provisioner/pull/72) * [Full changelog](https://github.com/openshift/csi-external-provisioner/compare/890aaa16e176f6967dd8e07210d4eb1e735ed79c...78a710fd2ccd6f87f7789c314349192d063f9f37) ### [csi-external-resizer](https://github.com/openshift/csi-external-resizer/tree/59a701a4c8cd3105e272b12afdb1e62e411b2772) * [OCPBUGS-20929](https://issues.redhat.com/browse/OCPBUGS-20929): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#147](https://github.com/openshift/csi-external-resizer/pull/147) * [Full changelog](https://github.com/openshift/csi-external-resizer/compare/9a76f330d7a03cfce9dbbb71f25febe3efc9271b...59a701a4c8cd3105e272b12afdb1e62e411b2772) ### [csi-external-snapshotter, csi-snapshot-controller, csi-snapshot-validation-webhook](https://github.com/openshift/csi-external-snapshotter/tree/0bf9276611e57cb87a05576c974fea1c38e3eb96) * [OCPBUGS-21032](https://issues.redhat.com/browse/OCPBUGS-21032): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#109](https://github.com/openshift/csi-external-snapshotter/pull/109) * [Full changelog](https://github.com/openshift/csi-external-snapshotter/compare/712bf7c316adfa0a3c8afc56d1db23abfadad58e...0bf9276611e57cb87a05576c974fea1c38e3eb96) ### [csi-livenessprobe](https://github.com/openshift/csi-livenessprobe/tree/a9bcbde134a17d3335f68a49aaad4befa8d7cc08) * [OCPBUGS-20640](https://issues.redhat.com/browse/OCPBUGS-20640): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#50](https://github.com/openshift/csi-livenessprobe/pull/50) * [Full changelog](https://github.com/openshift/csi-livenessprobe/compare/957e1d03570e07fb0825813ab7b751bc8543ebc2...a9bcbde134a17d3335f68a49aaad4befa8d7cc08) ### [csi-node-driver-registrar](https://github.com/openshift/csi-node-driver-registrar/tree/9dcaa7f5b7573e7ef9dbec1439abc32171003799) * [OCPBUGS-20697](https://issues.redhat.com/browse/OCPBUGS-20697): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#52](https://github.com/openshift/csi-node-driver-registrar/pull/52) * [Full changelog](https://github.com/openshift/csi-node-driver-registrar/compare/f8635f761f8f59b76c1056034fc5addb29071cfe...9dcaa7f5b7573e7ef9dbec1439abc32171003799) ### [docker-builder](https://github.com/openshift/builder/tree/5cedc85c41e43cfe88a86e669ba1beb8b357fd3e) * [OCPBUGS-20409](https://issues.redhat.com/browse/OCPBUGS-20409): drop the Overlay setting from transient mounts [#360](https://github.com/openshift/builder/pull/360) * [Full changelog](https://github.com/openshift/builder/compare/b79bcf70ac2fe589d16112d1fdf1bc72a53d4386...5cedc85c41e43cfe88a86e669ba1beb8b357fd3e) ### [gcp-pd-csi-driver](https://github.com/openshift/gcp-pd-csi-driver/tree/8a626fe5354a7cb28e31034dc8afe9c00d4b5a03) * [OCPBUGS-20752](https://issues.redhat.com/browse/OCPBUGS-20752): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#45](https://github.com/openshift/gcp-pd-csi-driver/pull/45) * [Full changelog](https://github.com/openshift/gcp-pd-csi-driver/compare/5856e47b8469151b4fd9fb42d56bd22f6e18b7dd...8a626fe5354a7cb28e31034dc8afe9c00d4b5a03) ### [gcp-pd-csi-driver-operator](https://github.com/openshift/gcp-pd-csi-driver-operator/tree/92376a4b846366ae3c7a61e5af895e3221d09703) * [OCPBUGS-20847](https://issues.redhat.com/browse/OCPBUGS-20847): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#87](https://github.com/openshift/gcp-pd-csi-driver-operator/pull/87) * [Full changelog](https://github.com/openshift/gcp-pd-csi-driver-operator/compare/999fb4c0142de013ad022f842cc29f508c9f8894...92376a4b846366ae3c7a61e5af895e3221d09703) ### [hyperkube, pod](https://github.com/openshift/kubernetes/tree/88e9b4c0d5978a2879307be87d25c592abb6eeea) * [OCPBUGS-20380](https://issues.redhat.com/browse/OCPBUGS-20380): [release-4.14] UPSTREAM: 121127: [1.27][CVE-2023-39325] .: bump golang.org/x/net to v0.17.0 [#1758](https://github.com/openshift/kubernetes/pull/1758) * [Full changelog](https://github.com/openshift/kubernetes/compare/98158f96f30cce46b1fca344fa2c87db7a9c4b4c...88e9b4c0d5978a2879307be87d25c592abb6eeea) ### [hypershift](https://github.com/openshift/hypershift/tree/e25848241d107e7f7f9b8fee08647cca012a324d) * [OCPBUGS-21869](https://issues.redhat.com/browse/OCPBUGS-21869): Remove EnsurePSANotPrivileged [#3107](https://github.com/openshift/hypershift/pull/3107) * [OCPBUGS-21822](https://issues.redhat.com/browse/OCPBUGS-21822): Add ign proxy label selector for LabelTopologyZone PodAntiAffinity [#3105](https://github.com/openshift/hypershift/pull/3105) * [OCPBUGS-21587](https://issues.redhat.com/browse/OCPBUGS-21587): change required pod anti-affinity rule to preferred rule [#3098](https://github.com/openshift/hypershift/pull/3098) * [OCPBUGS-19794](https://issues.redhat.com/browse/OCPBUGS-19794): Upgrade Agent APIs to v1beta1 [#3059](https://github.com/openshift/hypershift/pull/3059) * [Full changelog](https://github.com/openshift/hypershift/compare/b06a68aa757c36a357e8da4839bba32d31a7e9bc...e25848241d107e7f7f9b8fee08647cca012a324d) ### [ibm-vpc-block-csi-driver](https://github.com/openshift/ibm-vpc-block-csi-driver/tree/02471d9625339b1cd6d638e358a10c88b223d30e) * [OCPBUGS-21246](https://issues.redhat.com/browse/OCPBUGS-21246): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#50](https://github.com/openshift/ibm-vpc-block-csi-driver/pull/50) * [OCPBUGS-18142](https://issues.redhat.com/browse/OCPBUGS-18142): [IBM VPC] failed provisioning volume in proxy cluster [#46](https://github.com/openshift/ibm-vpc-block-csi-driver/pull/46) * [Full changelog](https://github.com/openshift/ibm-vpc-block-csi-driver/compare/f784dcaa0f422eaebb2971ca987b1925bc17f21d...02471d9625339b1cd6d638e358a10c88b223d30e) ### [ibm-vpc-block-csi-driver-operator](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/tree/faf68eda7983c9e4c6cab158b067fe73ea594173) * [OCPBUGS-21339](https://issues.redhat.com/browse/OCPBUGS-21339): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#81](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/pull/81) * [Full changelog](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/compare/55390bc12acc933667dd9cf4e5459cc214cedb2a...faf68eda7983c9e4c6cab158b067fe73ea594173) ### [ibm-vpc-node-label-updater](https://github.com/openshift/ibm-vpc-node-label-updater/tree/44a2b9430e38e4dc0fe6ef0c08cd759ed97fd43f) * [OCPBUGS-21451](https://issues.redhat.com/browse/OCPBUGS-21451): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#27](https://github.com/openshift/ibm-vpc-node-label-updater/pull/27) * [Full changelog](https://github.com/openshift/ibm-vpc-node-label-updater/compare/623de156aa396655a34c8a0df644a3c0ce982726...44a2b9430e38e4dc0fe6ef0c08cd759ed97fd43f) ### [insights-operator](https://github.com/openshift/insights-operator/tree/303ad017385789bf7f02812ac86e2246e2aea4a9) * [OCPBUGS-20590](https://issues.redhat.com/browse/OCPBUGS-20590): gather APIServer.config.openshift.io resource (#839) [#839](https://github.com/openshift/insights-operator/pull/839) * [OCPBUGS-20034](https://issues.redhat.com/browse/OCPBUGS-20034): improve on-demand data gathering timing issues (#835) [#835](https://github.com/openshift/insights-operator/pull/835) * [Full changelog](https://github.com/openshift/insights-operator/compare/540b58832c063f0bef2844cb61133c7c80adf58f...303ad017385789bf7f02812ac86e2246e2aea4a9) ### [k8s-prometheus-adapter](https://github.com/openshift/k8s-prometheus-adapter/tree/428bb46ca455d22477df7fb62e7a63d2a48fcfbc) * [OCPBUGS-21473](https://issues.redhat.com/browse/OCPBUGS-21473): upgrade golang.org/x/net to 0.17.0 to address CVE-2023… [#81](https://github.com/openshift/k8s-prometheus-adapter/pull/81) * [OCPBUGS-20250](https://issues.redhat.com/browse/OCPBUGS-20250): limit number of simultaneous client requests [#77](https://github.com/openshift/k8s-prometheus-adapter/pull/77) * [Full changelog](https://github.com/openshift/k8s-prometheus-adapter/compare/2f59cfdf94f6f284b0a77cf78af6cea849572fb2...428bb46ca455d22477df7fb62e7a63d2a48fcfbc) ### [kube-state-metrics](https://github.com/openshift/kube-state-metrics/tree/db0c54994a6aad9155a94513eaa3480c1812f45e) * [OCPBUGS-20794](https://issues.redhat.com/browse/OCPBUGS-20794): bump x/net to v0.17.0 [#101](https://github.com/openshift/kube-state-metrics/pull/101) * [Full changelog](https://github.com/openshift/kube-state-metrics/compare/d13d44fdb41fbdfae555e791982f040f29003e3e...db0c54994a6aad9155a94513eaa3480c1812f45e) ### [machine-config-operator](https://github.com/openshift/machine-config-operator/tree/5ac7b4ae0bca76358e4d40f546306775a8e0ea2c) * [OCPBUGS-20025](https://issues.redhat.com/browse/OCPBUGS-20025): Consider ingress VIPs when selecting node IP [#3951](https://github.com/openshift/machine-config-operator/pull/3951) * [OCPBUGS-21841](https://issues.redhat.com/browse/OCPBUGS-21841): CRI-O: Use 127.0.0.1 for stream server with random port [#3984](https://github.com/openshift/machine-config-operator/pull/3984) * [OCPBUGS-20358](https://issues.redhat.com/browse/OCPBUGS-20358): dashboard should detect unknown and not ready for not ready dashboard [#3966](https://github.com/openshift/machine-config-operator/pull/3966) * [OCPBUGS-19657](https://issues.redhat.com/browse/OCPBUGS-19657): After dual-stack conversion reconcile IPFamilies [#3934](https://github.com/openshift/machine-config-operator/pull/3934) * [Full changelog](https://github.com/openshift/machine-config-operator/compare/a2469941c0dcccf9584e0f54b3e38c13b1292ca9...5ac7b4ae0bca76358e4d40f546306775a8e0ea2c) ### [must-gather](https://github.com/openshift/must-gather/tree/833e1de991e2319439fb48550c86d2d44d412501) * [OCPBUGS-20429](https://issues.redhat.com/browse/OCPBUGS-20429): Revert "Add must gather script for network observability" [#391](https://github.com/openshift/must-gather/pull/391) * [OCPBUGS-20354](https://issues.redhat.com/browse/OCPBUGS-20354): Removed workload partitioning annotation from ppc script [#388](https://github.com/openshift/must-gather/pull/388) * [Full changelog](https://github.com/openshift/must-gather/compare/197b7c6051deca66c76ecddc69c6b726d0d0f092...833e1de991e2319439fb48550c86d2d44d412501) ### [network-tools](https://github.com/openshift/network-tools/tree/5ef9f0ea3e403af7702c5b17e15f75940fa22ac4) * [OCPBUGS-20520](https://issues.redhat.com/browse/OCPBUGS-20520): Update scripts in network-tools to reflect the changes in IC model [#92](https://github.com/openshift/network-tools/pull/92) * [Full changelog](https://github.com/openshift/network-tools/compare/4d34d616da14681c9a4536776bdd81f4492d33c2...5ef9f0ea3e403af7702c5b17e15f75940fa22ac4) ### [olm-catalogd](https://github.com/openshift/operator-framework-catalogd/tree/aa44c0262f1de5d888dc11abe6d730b0c84a8df3) * [OCPBUGS-21197](https://issues.redhat.com/browse/OCPBUGS-21197): Bump golang.org/x/net from 0.10.0 to 0.17.0 (#197) [#30](https://github.com/openshift/operator-framework-catalogd/pull/30) * [Full changelog](https://github.com/openshift/operator-framework-catalogd/compare/ac4c5ab4f7165352a9727591aee52ca953302f80...aa44c0262f1de5d888dc11abe6d730b0c84a8df3) ### [olm-operator-controller](https://github.com/openshift/operator-framework-operator-controller/tree/17343293267cad10f074fbe155c7fa31ed6b9336) * [OCPBUGS-21287](https://issues.redhat.com/browse/OCPBUGS-21287): Bump golang.org/x/net to v0.17.0 [#29](https://github.com/openshift/operator-framework-operator-controller/pull/29) * [Full changelog](https://github.com/openshift/operator-framework-operator-controller/compare/d8fa6353e75d8c4534c17a3b45a3babb6833e660...17343293267cad10f074fbe155c7fa31ed6b9336) ### [olm-rukpak](https://github.com/openshift/operator-framework-rukpak/tree/daa50736076ed6c207c57ef29d94cde6c7cdbdbd) * [OCPBUGS-21379](https://issues.redhat.com/browse/OCPBUGS-21379): Bump golang.org/x/net from 0.15.0 to 0.17.0 [#39](https://github.com/openshift/operator-framework-rukpak/pull/39) * [Full changelog](https://github.com/openshift/operator-framework-rukpak/compare/652f7c07d0c253ea55aecfeff352ca4db8bdd794...daa50736076ed6c207c57ef29d94cde6c7cdbdbd) ### [openshift-state-metrics](https://github.com/openshift/openshift-state-metrics/tree/dff4b0f47e639fe2382e8c4c17208fccaacfcbdf) * [OCPBUGS-20740](https://issues.redhat.com/browse/OCPBUGS-20740): bump `x/net` to v0.17.0 [#107](https://github.com/openshift/openshift-state-metrics/pull/107) * [Full changelog](https://github.com/openshift/openshift-state-metrics/compare/b9211ed8fa4eb7edfc3d96c6b4843eea6b3337cd...dff4b0f47e639fe2382e8c4c17208fccaacfcbdf) ### [operator-marketplace](https://github.com/operator-framework/operator-marketplace/tree/a367cea6e2371a0db2957403de40958852f817b3) * [OCPBUGS-21001](https://issues.redhat.com/browse/OCPBUGS-21001): [release-4.14] bump golang.org/x/net to 0.17.0 [#548](https://github.com/operator-framework/operator-marketplace/pull/548) * [Full changelog](https://github.com/operator-framework/operator-marketplace/compare/41f3c8f35d6a2a5d5c46de6f4cc76331b16b8e0c...a367cea6e2371a0db2957403de40958852f817b3) ### [ovn-kubernetes, ovn-kubernetes-microshift](https://github.com/openshift/ovn-kubernetes/tree/7a232386623498f099ccdedfc58bc1c134c61ddd) * [OCPBUGS-19781](https://issues.redhat.com/browse/OCPBUGS-19781): Dockerfile: Copy ovnkube-trace file for RHEL8 platform [#1908](https://github.com/openshift/ovn-kubernetes/pull/1908) * [OCPBUGS-20260](https://issues.redhat.com/browse/OCPBUGS-20260), [OCPBUGS-20261](https://issues.redhat.com/browse/OCPBUGS-20261): [release-4.14] Use private IPv4 address range for transit switch subnet & Incorrect webhook error and exit handling [#1933](https://github.com/openshift/ovn-kubernetes/pull/1933) * [Full changelog](https://github.com/openshift/ovn-kubernetes/compare/5366edeb9dd8a7ac21d2ebcdcb4a5dac8d785023...7a232386623498f099ccdedfc58bc1c134c61ddd) ### [powervs-block-csi-driver](https://github.com/openshift/ibm-powervs-block-csi-driver/tree/e9694cefd775cd6313acdd8d6382fe60cec8559c) * [OCPBUGS-21112](https://issues.redhat.com/browse/OCPBUGS-21112): CVE-2023-39325 - Update net dependencies - 4.14 [#51](https://github.com/openshift/ibm-powervs-block-csi-driver/pull/51) * [Full changelog](https://github.com/openshift/ibm-powervs-block-csi-driver/compare/4657064e0f49758473f35b10c9da0290518da949...e9694cefd775cd6313acdd8d6382fe60cec8559c) ### [powervs-block-csi-driver-operator](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/tree/48b56bbfa3557eb528b20d7d34a99bbd0d542355) * [OCPBUGS-21203](https://issues.redhat.com/browse/OCPBUGS-21203): CVE-2023-39325 - Update net dependencies - 4.14 [#40](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/pull/40) * Update OWNERS add yussufsh [#44](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/pull/44) * [Full changelog](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/compare/33ada3f908e078d7f4ba0e230fde3663b465accb...48b56bbfa3557eb528b20d7d34a99bbd0d542355) ### [powervs-cloud-controller-manager](https://github.com/openshift/cloud-provider-powervs/tree/0a89a6ef29a15f2fa51a0735c200e54f5af122c6) * [OCPBUGS-21299](https://issues.redhat.com/browse/OCPBUGS-21299): CVE-2023-39325 - Update net dependencies - 4.14 [#45](https://github.com/openshift/cloud-provider-powervs/pull/45) * [Full changelog](https://github.com/openshift/cloud-provider-powervs/compare/0e7522630da95e8ede517d4527c14eb36233a4c5...0a89a6ef29a15f2fa51a0735c200e54f5af122c6) ### [powervs-machine-controllers](https://github.com/openshift/machine-api-provider-powervs/tree/02379e59576940766549f8d5c0ccec245a2682e3) * [OCPBUGS-21879](https://issues.redhat.com/browse/OCPBUGS-21879): CVE-2023-39325 - Bump golang.org/x/net to v0.17.0 - 4.14 [#54](https://github.com/openshift/machine-api-provider-powervs/pull/54) * [Full changelog](https://github.com/openshift/machine-api-provider-powervs/compare/d487830f1c85e15d460eaacb02d98f91aec6519b...02379e59576940766549f8d5c0ccec245a2682e3) ### [prometheus](https://github.com/openshift/prometheus/tree/bcb475d970214c3f48308426014b1ffb05758e34) * [OCPBUGS-21262](https://issues.redhat.com/browse/OCPBUGS-21262): update golang.org/x/net to v0.17.0 [4.14] [#176](https://github.com/openshift/prometheus/pull/176) * [Full changelog](https://github.com/openshift/prometheus/compare/65d9696678766651dd8b2c719d3cea5c85d5c53a...bcb475d970214c3f48308426014b1ffb05758e34) ### [prometheus-alertmanager](https://github.com/openshift/prometheus-alertmanager/tree/e3725166cf8ef228f1672b00d063c488b69687aa) * [OCPBUGS-21064](https://issues.redhat.com/browse/OCPBUGS-21064): Bump golang.org/x/net to v0.17.0 [#80](https://github.com/openshift/prometheus-alertmanager/pull/80) * [Full changelog](https://github.com/openshift/prometheus-alertmanager/compare/d6d234d631ee023aca97ec47d83766ba5e230f3a...e3725166cf8ef228f1672b00d063c488b69687aa) ### [prometheus-config-reloader, prometheus-operator, prometheus-operator-admission-webhook](https://github.com/openshift/prometheus-operator/tree/3de5e6d28b10142179eda77d218fb5c3e9f04667) * [OCPBUGS-20881](https://issues.redhat.com/browse/OCPBUGS-20881): Bump golang.org/x/net to v0.17.0 [#247](https://github.com/openshift/prometheus-operator/pull/247) * [Full changelog](https://github.com/openshift/prometheus-operator/compare/f7f609ae9dfbe53969a3e5506c36ecd8e5273913...3de5e6d28b10142179eda77d218fb5c3e9f04667) ### [prometheus-node-exporter](https://github.com/openshift/node_exporter/tree/5ee0a9d957a04756ba76623a8bbc12be9949109f) * [OCPBUGS-21162](https://issues.redhat.com/browse/OCPBUGS-21162): (4.14) upgrade golang.org/x/net to v0.17.0 [#134](https://github.com/openshift/node_exporter/pull/134) * [Full changelog](https://github.com/openshift/node_exporter/compare/053bcf6fb45c460fbaccc810bdac91a3aaa4b6b0...5ee0a9d957a04756ba76623a8bbc12be9949109f) ### [telemeter](https://github.com/openshift/telemeter/tree/c8b876a2ba2965c90a57ca543d4f55d7bf9a8702) * [OCPBUGS-21349](https://issues.redhat.com/browse/OCPBUGS-21349): [release-4.14]: Bump golang.org/x/net to v0.17.0 [#484](https://github.com/openshift/telemeter/pull/484) * [Full changelog](https://github.com/openshift/telemeter/compare/36999a33bdeb42c6f25d099985c98f346f83c1f3...c8b876a2ba2965c90a57ca543d4f55d7bf9a8702) ### [tests](https://github.com/openshift/origin/tree/8e07c9b9fb1938719bfe7b17590df08415be08df) * Revert #28304 "OCPBUGS-20308: Backport PR 28295 and 28238" [#28314](https://github.com/openshift/origin/pull/28314) * [Full changelog](https://github.com/openshift/origin/compare/7de11e08b8c4d4a91bd26f40f746650ce1589702...8e07c9b9fb1938719bfe7b17590df08415be08df) ### [thanos](https://github.com/openshift/thanos/tree/175a63002855e7a3f4f5cd49c90680c41be181d8) * [OCPBUGS-21176](https://issues.redhat.com/browse/OCPBUGS-21176): Bump golang.org/x/net to v0.17.0 [#124](https://github.com/openshift/thanos/pull/124) * [Full changelog](https://github.com/openshift/thanos/compare/baf119a6ad26c2b8aeb05b7d044567dc671065df...175a63002855e7a3f4f5cd49c90680c41be181d8) ### [vsphere-csi-driver, vsphere-csi-driver-syncer](https://github.com/openshift/vmware-vsphere-csi-driver/tree/a5ed57f5120136bf08e134bf478186c82bfb81da) * [OCPBUGS-21564](https://issues.redhat.com/browse/OCPBUGS-21564): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#90](https://github.com/openshift/vmware-vsphere-csi-driver/pull/90) * [Full changelog](https://github.com/openshift/vmware-vsphere-csi-driver/compare/ebc2f372718ad8b442b99a005773e6d8da5549a6...a5ed57f5120136bf08e134bf478186c82bfb81da) ### [vsphere-csi-driver-operator](https://github.com/openshift/vmware-vsphere-csi-driver-operator/tree/f7afb6462c79317cc53c621084640860a4351788) * [OCPBUGS-21450](https://issues.redhat.com/browse/OCPBUGS-21450): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#173](https://github.com/openshift/vmware-vsphere-csi-driver-operator/pull/173) * [Full changelog](https://github.com/openshift/vmware-vsphere-csi-driver-operator/compare/a8c196e8cc6061b60af066a490966608c26b19ce...f7afb6462c79317cc53c621084640860a4351788) ### [vsphere-problem-detector](https://github.com/openshift/vsphere-problem-detector/tree/6b359ea5b69636a00cfd5c4f81f0279cfd41401a) * [OCPBUGS-21581](https://issues.redhat.com/browse/OCPBUGS-21581): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#129](https://github.com/openshift/vsphere-problem-detector/pull/129) * [Full changelog](https://github.com/openshift/vsphere-problem-detector/compare/c5118c340b2683046fe5e24439395ca75709eebb...6b359ea5b69636a00cfd5c4f81f0279cfd41401a)