# 4.13.38 Created: 2024-03-21 09:46:05 +0000 UTC Image Digest: `sha256:db7a6fad1d56cf391159d252daabbb44178132081e077ae290317b91633fb1db` Promoted from registry.ci.openshift.org/ocp/release:4.13.0-0.nightly-2024-03-20-130748 ## Changes from 4.13.16 ### Components * Kubernetes upgraded from 1.26.9 to 1.26.14 * Red Hat Enterprise Linux CoreOS upgraded from 413.92.202310100714-0 to 413.92.202403200554-0 ### Rebuilt images without code change * [agent-installer-api-server](https://github.com/openshift/assisted-service) git [06189bcd](https://github.com/openshift/assisted-service/commit/06189bcdb0bea068f8ac51a3550fcdcbde522a76) `sha256:cb775ce2cae7e175faa31f423cfbeb0a0dead96954e009c5ad871ab1c4d8e3e1` * [agent-installer-csr-approver](https://github.com/openshift/assisted-installer) git [edf25423](https://github.com/openshift/assisted-installer/commit/edf25423e34294b754ac16a67dbaf1aed7467ca4) `sha256:beb85068413f5030ea23b4c3b8483a7c5260076b7c828764365de7fd99744112` * [agent-installer-orchestrator](https://github.com/openshift/assisted-installer) git [edf25423](https://github.com/openshift/assisted-installer/commit/edf25423e34294b754ac16a67dbaf1aed7467ca4) `sha256:bfa1b14708e3bdcac2915031aaf34a1132b4d27b5570b16f6a9d26bedb936386` * [alibaba-machine-controllers](https://github.com/openshift/cluster-api-provider-alibaba) git [4c0f96a6](https://github.com/openshift/cluster-api-provider-alibaba/commit/4c0f96a692dee91100d7085c05a68f3efb7e281d) `sha256:39ba1487177092db6886c2038f76513b0ffcd2803615c82f6189973546b9444f` * [cluster-bootstrap](https://github.com/openshift/cluster-bootstrap) git [ee908b6b](https://github.com/openshift/cluster-bootstrap/commit/ee908b6bb91dee3e61aface46d53a00b4e9288a2) `sha256:347fbbb93e64f1899a389954b8484bc3f494cf663b2b8f1a35c76ad592c4f7d8` * [cluster-update-keys](https://github.com/openshift/cluster-update-keys) git [5b725937](https://github.com/openshift/cluster-update-keys/commit/5b725937d51e9f089c3f99e27e4ee77a6d2cbbcd) `sha256:9d5a0b0f4866de01457b86e3fb2497e2b11aa1eac83e6858919fc55543a432ec` * [configmap-reloader](https://github.com/openshift/configmap-reload) git [9adad592](https://github.com/openshift/configmap-reload/commit/9adad592e7d9bd5a723add16488e68365a64977f) `sha256:c579d9d2b223deeb88ae968409f64a635e519f23c25932b75845e06a0ca0ef8c` * [csi-driver-nfs](https://github.com/openshift/csi-driver-nfs) git [2b914c21](https://github.com/openshift/csi-driver-nfs/commit/2b914c2161722ebf11f9275fa29e00a0b1306da1) `sha256:2d37b5eed520a27fe3db4023afbab6215ee3c04b69ad4e7787833b132537e2f3` * [docker-registry](https://github.com/openshift/image-registry) git [47a15ac8](https://github.com/openshift/image-registry/commit/47a15ac8b7233bb1de44c1364bbd787de2edaaf0) `sha256:90cac798efb493c5280543daddef9e590c4e797f3d05542f8c5f6bc7d3fbb632` * [driver-toolkit](https://github.com/openshift/driver-toolkit) git [d719bdcf](https://github.com/openshift/driver-toolkit/commit/d719bdcfa49bc18b729117ee513a86a1ddecb63a) `sha256:fa20bf3ddb18510902575e7481bc1e6879fb38548d73507f6fc3a211dff6484c` * [ibmcloud-machine-controllers](https://github.com/openshift/machine-api-provider-ibmcloud) git [bb253a0c](https://github.com/openshift/machine-api-provider-ibmcloud/commit/bb253a0c607f7d1f8139ffd401bd6c9c432090d1) `sha256:c0b03a3003698a91639d94df06f463265d136aead41078aa817798a210744cdc` * [ironic-machine-os-downloader](https://github.com/openshift/ironic-rhcos-downloader) git [ce291779](https://github.com/openshift/ironic-rhcos-downloader/commit/ce2917794de5723248fe3302c8833f89fb54265a) `sha256:ea8e22b7a514f3a79a916efc8fefc71ef1921fe930188b608c9727e370163b78` * [ironic-static-ip-manager](https://github.com/openshift/ironic-static-ip-manager) git [4536724a](https://github.com/openshift/ironic-static-ip-manager/commit/4536724a8644fda91a74b23901ba1789eaff7179) `sha256:c3917c159a974f60497269e66cbb9d44195c036997e75f40bc0b3e4d59b99213` * [kube-storage-version-migrator](https://github.com/openshift/kubernetes-kube-storage-version-migrator) git [bad104d1](https://github.com/openshift/kubernetes-kube-storage-version-migrator/commit/bad104d13ba95bc850f5aaf96436f793d7985864) `sha256:b4d2d503d7de2c89033e440b99ec916da0d196004ead21b3588038d8df262966` * [kubevirt-cloud-controller-manager](https://github.com/openshift/cloud-provider-kubevirt) git [ee2033ec](https://github.com/openshift/cloud-provider-kubevirt/commit/ee2033ecd471dc9fc08d101c421a04916f4f55c5) `sha256:3a988a16d62d4769a0ca97f87531ad2b6d1cff12ce8f9667a19ef7e9503ec5a2` * [kubevirt-csi-driver](https://github.com/openshift/kubevirt-csi-driver) git [efa0b943](https://github.com/openshift/kubevirt-csi-driver/commit/efa0b9432bf0f44a965dc978ada75ea9b0f3e511) `sha256:d8fdf1b997c4f0bfb4106c5184e314ad780e3bd3b73bff35b537600a27ac7857` * [kuryr-cni](https://github.com/openshift/kuryr-kubernetes) git [36754b7b](https://github.com/openshift/kuryr-kubernetes/commit/36754b7b90928e26811e1c5ea13e7d0bd85709de) `sha256:f536ccdcece9e5c446c9603ba3d10acf45efe4fece605cd67023650e5b9ab63a` * [kuryr-controller](https://github.com/openshift/kuryr-kubernetes) git [36754b7b](https://github.com/openshift/kuryr-kubernetes/commit/36754b7b90928e26811e1c5ea13e7d0bd85709de) `sha256:18e287f23e47b87973dba043ffab81c05a662e46eb050660c67d29ceac3c7f57` * [libvirt-machine-controllers](https://github.com/openshift/cluster-api-provider-libvirt) git [d4b7a8ab](https://github.com/openshift/cluster-api-provider-libvirt/commit/d4b7a8ab790a970ce2f0374146248b2307df0185) `sha256:5ad1a2b96c5f96327e371d2e9ee1aad413fae0dafe532b8365f7a618b2dd19c7` * machine-os-content `sha256:6d96a6fbf8fdd9822a5fb43cdbfe3e84c5bf11b3842c00d409edc8cc0161abd8` * [machine-os-images](https://github.com/openshift/machine-os-images) git [b14856ff](https://github.com/openshift/machine-os-images/commit/b14856ffbc8fbe1f986cf1b7b835bbeaa786ce5e) `sha256:86b75b08e4520d01d4eea3ae1d064f8490743507a422fdfd70f7f10430fd550a` * [multus-route-override-cni](https://github.com/openshift/route-override-cni) git [ca3bbec5](https://github.com/openshift/route-override-cni/commit/ca3bbec5c75ebcd6814bdd74856b27db755c9fa3) `sha256:e0646f76a5c5b36ae56260538c8991c9f9b8be6dff9b26aee158c77d252403f7` * [must-gather](https://github.com/openshift/must-gather) git [288ef2fc](https://github.com/openshift/must-gather/commit/288ef2fcfe63cbfab0af69a41b508c044ee890aa) `sha256:3e846828f57f04e24f80299874782f40b59f86d3721ef90ec1afc0899918f180` * [network-interface-bond-cni](https://github.com/openshift/bond-cni) git [84bda2af](https://github.com/openshift/bond-cni/commit/84bda2afb2ab260253b77d5d282df773cc6b3438) `sha256:8a6f91e25ae19b6a475b537fbd8aa4fd47fa53fd58c790ce090aa3cfee19027c` * [network-tools](https://github.com/openshift/network-tools) git [073feda1](https://github.com/openshift/network-tools/commit/073feda14fbd894c4238d693afa38a06392f2360) `sha256:105a91a836aa95de1b33e9b24b1c3b66e2905d052ea0735ad84fb90b0635a7d9` * [nutanix-cloud-controller-manager](https://github.com/openshift/cloud-provider-nutanix) git [4d1c58e2](https://github.com/openshift/cloud-provider-nutanix/commit/4d1c58e2b97f00e64ab4332d18dfdd531fb9cc4e) `sha256:d257fe2cd7d7d5cf390eaa1a5c9f6cbadc1d32d03ea20e64c2716fee69dd31c2` * [oauth-proxy](https://github.com/openshift/oauth-proxy) git [44af5a3a](https://github.com/openshift/oauth-proxy/commit/44af5a3a021fd158c2e44d9951ad59a3d474cdf3) `sha256:ca8cff1602367af1fdea0a1e1659f028b45125293091d93502f774f129908bb2` * [openshift-controller-manager](https://github.com/openshift/openshift-controller-manager) git [385057e5](https://github.com/openshift/openshift-controller-manager/commit/385057e57752b7b4f21ef32d7a7993d266a591eb) `sha256:bdaf2a1f8d0d00a4aca5ed347eaed6201e1b3b7f9df7c9fdd828e0bdbc27e4d1` * [openstack-machine-api-provider](https://github.com/openshift/machine-api-provider-openstack) git [7bce9d67](https://github.com/openshift/machine-api-provider-openstack/commit/7bce9d67fba63a0ed6a39b78488da8e85bf07dbd) `sha256:a0fbfc43d2004fea295e20df722b5e9bd77a44ad3abaa7a4d607ba01cc848672` * [ovirt-machine-controllers](https://github.com/openshift/cluster-api-provider-ovirt) git [22d89b3f](https://github.com/openshift/cluster-api-provider-ovirt/commit/22d89b3fd9e2e395a62f71092487d26c8940052e) `sha256:62b5253f1faf04aaad0de7b0d0f58416b7f7c5fc5f75a0e4c2b3d66b927632b2` * [prom-label-proxy](https://github.com/openshift/prom-label-proxy) git [b501d5e2](https://github.com/openshift/prom-label-proxy/commit/b501d5e2aff82d46a141223636b522aeae95b915) `sha256:5633fc0acbae129d8d43a9485dd0496a7254abf308ddf02f30ca421e29e7b1c9` * rhel-coreos `sha256:128f0dc5b4f42344ec1220cee05c087936e8864f84dc9cb9786c4df55824d2c5` * rhel-coreos-extensions `sha256:15ee3a97ba183e7f7b1211348a73a3f625e307143519fe2a19916441b6120d6d` * [route-controller-manager](https://github.com/openshift/route-controller-manager) git [6667a6cb](https://github.com/openshift/route-controller-manager/commit/6667a6cbf9a87331fcc4407375118c0bb884c925) `sha256:41a3b875f9d2f49b6a843a802354a672fd0ba87085baf2315f3c5005c3f40b12` ### [agent-installer-node-agent](https://github.com/openshift/assisted-installer-agent/tree/c5611048e36de8c7c917451fa8e4fb3f1edb8b6a) * [MGMT-13111](https://issues.redhat.com/browse/MGMT-13111): Freeze on `404 Not Found` (#628) [#628](https://github.com/openshift/assisted-installer-agent/pull/628) * [Full changelog](https://github.com/openshift/assisted-installer-agent/compare/35357f5725d925f451c29668c0b9e307998c6ac5...c5611048e36de8c7c917451fa8e4fb3f1edb8b6a) ### [alibaba-cloud-controller-manager](https://github.com/openshift/cloud-provider-alibaba-cloud/tree/e41e11ccf25fa74e4cfb4ace124f35cffc0191a7) * [OCPBUGS-21238](https://issues.redhat.com/browse/OCPBUGS-21238): Bump golang.org/x/net to v0.19.0 [#43](https://github.com/openshift/cloud-provider-alibaba-cloud/pull/43) * [Full changelog](https://github.com/openshift/cloud-provider-alibaba-cloud/compare/b5200baa784513b77437809c63fcc80cfd53c9df...e41e11ccf25fa74e4cfb4ace124f35cffc0191a7) ### [alibaba-cloud-csi-driver](https://github.com/openshift/alibaba-cloud-csi-driver/tree/6384f904d041b761670532ac183271b8110707f2) * [OCPBUGS-21329](https://issues.redhat.com/browse/OCPBUGS-21329): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#37](https://github.com/openshift/alibaba-cloud-csi-driver/pull/37) * [Full changelog](https://github.com/openshift/alibaba-cloud-csi-driver/compare/94667c6c213f07ec7613a6d6e831d64ee73181e1...6384f904d041b761670532ac183271b8110707f2) ### [alibaba-disk-csi-driver-operator](https://github.com/openshift/alibaba-disk-csi-driver-operator/tree/7e415973dda671d82ae58d0107af274ff053db5c) * [OCPBUGS-21428](https://issues.redhat.com/browse/OCPBUGS-21428): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#65](https://github.com/openshift/alibaba-disk-csi-driver-operator/pull/65) * [Full changelog](https://github.com/openshift/alibaba-disk-csi-driver-operator/compare/c08d87a1d043dc04d3d3cb59be9265ee5ed29b06...7e415973dda671d82ae58d0107af274ff053db5c) ### [apiserver-network-proxy](https://github.com/openshift/apiserver-network-proxy/tree/3362d673b054807a4974b4d600486933f7e0bd42) * [HOSTEDCP-1323](https://issues.redhat.com/browse/HOSTEDCP-1323): Merge latest code into 4.14 branch [#45](https://github.com/openshift/apiserver-network-proxy/pull/45) * [Full changelog](https://github.com/openshift/apiserver-network-proxy/compare/f1e6d94ca51afe169bc038acb0b06cedea16d617...3362d673b054807a4974b4d600486933f7e0bd42) ### [aws-cloud-controller-manager](https://github.com/openshift/cloud-provider-aws/tree/f116a0dda271dfde3c14269047967b3ead1ee94e) * [OCPBUGS-27964](https://issues.redhat.com/browse/OCPBUGS-27964): bump go.opentelemetry.io [#72](https://github.com/openshift/cloud-provider-aws/pull/72) * [OCPBUGS-20738](https://issues.redhat.com/browse/OCPBUGS-20738): Update golang.org/x/net to v0.17.0 [#54](https://github.com/openshift/cloud-provider-aws/pull/54) * [Full changelog](https://github.com/openshift/cloud-provider-aws/compare/946daa07dbf49c4a1860a1c3fc4c05fa685c6590...f116a0dda271dfde3c14269047967b3ead1ee94e) ### [aws-cluster-api-controllers](https://github.com/openshift/cluster-api-provider-aws/tree/de23838384b0859542041395fd84100efee34833) * [OCPBUGS-20836](https://issues.redhat.com/browse/OCPBUGS-20836): bump golang.org/x/net to v0.17.0 [#482](https://github.com/openshift/cluster-api-provider-aws/pull/482) * [Full changelog](https://github.com/openshift/cluster-api-provider-aws/compare/acb52a088682bf4019d616523881401526437fd3...de23838384b0859542041395fd84100efee34833) ### [aws-ebs-csi-driver](https://github.com/openshift/aws-ebs-csi-driver/tree/325cb029f5dac51e4efabe89a62315af134cad8d) * [OCPBUGS-20939](https://issues.redhat.com/browse/OCPBUGS-20939): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#240](https://github.com/openshift/aws-ebs-csi-driver/pull/240) * [Full changelog](https://github.com/openshift/aws-ebs-csi-driver/compare/923631d779405e7cb684c174fa42e589c318060f...325cb029f5dac51e4efabe89a62315af134cad8d) ### [aws-ebs-csi-driver-operator](https://github.com/openshift/aws-ebs-csi-driver-operator/tree/3cb879a801f54ecc5d03c7404deba7ca25bb5af5) * [OCPBUGS-21034](https://issues.redhat.com/browse/OCPBUGS-21034): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#281](https://github.com/openshift/aws-ebs-csi-driver-operator/pull/281) * [Full changelog](https://github.com/openshift/aws-ebs-csi-driver-operator/compare/baf14a425efed2764c79d630d5aecb4744066397...3cb879a801f54ecc5d03c7404deba7ca25bb5af5) ### [aws-machine-controllers](https://github.com/openshift/machine-api-provider-aws/tree/e1a57b5e4ce731e8f90cd2c0d4ded81e40fa7a37) * [OCPBUGS-24563](https://issues.redhat.com/browse/OCPBUGS-24563): Reduce metrics cardinality [#96](https://github.com/openshift/machine-api-provider-aws/pull/96) * [OCPBUGS-21568](https://issues.redhat.com/browse/OCPBUGS-21568): Update golang.org/x/net to v0.17.0 [#89](https://github.com/openshift/machine-api-provider-aws/pull/89) * [Full changelog](https://github.com/openshift/machine-api-provider-aws/compare/ba3b3a31ca9efcc984015280965a4b28ffd740e0...e1a57b5e4ce731e8f90cd2c0d4ded81e40fa7a37) ### [aws-pod-identity-webhook](https://github.com/openshift/aws-pod-identity-webhook/tree/06140aba64cbaca89af882d1a658e318063fb928) * [OCPBUGS-21331](https://issues.redhat.com/browse/OCPBUGS-21331): Upgrade golang/x/net for CVE-2023-39325 [#184](https://github.com/openshift/aws-pod-identity-webhook/pull/184) * NO-ISSUE: Sync OWNERS with team members [#177](https://github.com/openshift/aws-pod-identity-webhook/pull/177) * snyk: exclude vendor/ [#172](https://github.com/openshift/aws-pod-identity-webhook/pull/172) * [Full changelog](https://github.com/openshift/aws-pod-identity-webhook/compare/125a4b45d02ac7596406e43810398688b25ec91d...06140aba64cbaca89af882d1a658e318063fb928) ### [azure-cloud-controller-manager, azure-cloud-node-manager](https://github.com/openshift/cloud-provider-azure/tree/bf9bd02236e13c426d58c9828685dd6c598ff15f) * [OCPBUGS-21419](https://issues.redhat.com/browse/OCPBUGS-21419): Bump golang.org/x/net to v0.18.0 [#94](https://github.com/openshift/cloud-provider-azure/pull/94) * [Full changelog](https://github.com/openshift/cloud-provider-azure/compare/b8d243397ff297baf875a88132f84d8cef34b968...bf9bd02236e13c426d58c9828685dd6c598ff15f) ### [azure-cluster-api-controllers](https://github.com/openshift/cluster-api-provider-azure/tree/aa3b650ee93e7cb92556cf2e917074011578c040) * [OCPBUGS-21503](https://issues.redhat.com/browse/OCPBUGS-21503): bump golang.org/x/net to v0.17.0 [#288](https://github.com/openshift/cluster-api-provider-azure/pull/288) * [Full changelog](https://github.com/openshift/cluster-api-provider-azure/compare/8846366f4ae63a63ab75a35761cca1c95dee3c84...aa3b650ee93e7cb92556cf2e917074011578c040) ### [azure-disk-csi-driver](https://github.com/openshift/azure-disk-csi-driver/tree/b6d3fbcbf312f03247092323a88a43873b693f22) * [OCPBUGS-23216](https://issues.redhat.com/browse/OCPBUGS-23216): Update to v1.26.7 [#63](https://github.com/openshift/azure-disk-csi-driver/pull/63) * [OCPBUGS-20688](https://issues.redhat.com/browse/OCPBUGS-20688): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#55](https://github.com/openshift/azure-disk-csi-driver/pull/55) * [Full changelog](https://github.com/openshift/azure-disk-csi-driver/compare/89e21d61f6f23b2e89f1b24096e458d6ade8a40a...b6d3fbcbf312f03247092323a88a43873b693f22) ### [azure-disk-csi-driver-operator](https://github.com/openshift/azure-disk-csi-driver-operator/tree/8534d7563e209e12eec38a2027cd1d9efd530071) * [OCPBUGS-20766](https://issues.redhat.com/browse/OCPBUGS-20766): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#102](https://github.com/openshift/azure-disk-csi-driver-operator/pull/102) * [Full changelog](https://github.com/openshift/azure-disk-csi-driver-operator/compare/842415aa35f7151c34645161ef6aede60354ae2a...8534d7563e209e12eec38a2027cd1d9efd530071) ### [azure-file-csi-driver](https://github.com/openshift/azure-file-csi-driver/tree/33d52ecd52b09ba3ab431ce2e2850262a88c2282) * [OCPBUGS-20862](https://issues.redhat.com/browse/OCPBUGS-20862): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#38](https://github.com/openshift/azure-file-csi-driver/pull/38) * [Full changelog](https://github.com/openshift/azure-file-csi-driver/compare/60e0cb86a6055e420bfdb52530d0a0d6418f47fd...33d52ecd52b09ba3ab431ce2e2850262a88c2282) ### [azure-file-csi-driver-operator](https://github.com/openshift/azure-file-csi-driver-operator/tree/70e0530255150e513061730f7624c9c235ee7c38) * [OCPBUGS-20964](https://issues.redhat.com/browse/OCPBUGS-20964): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#77](https://github.com/openshift/azure-file-csi-driver-operator/pull/77) * [Full changelog](https://github.com/openshift/azure-file-csi-driver-operator/compare/a79311d87a15769d1bad162d80fb9cb978478a42...70e0530255150e513061730f7624c9c235ee7c38) ### [azure-machine-controllers](https://github.com/openshift/machine-api-provider-azure/tree/62f6e0f3091262a84e1d6240e2086f35635b5b5b) * [OCPBUGS-29906](https://issues.redhat.com/browse/OCPBUGS-29906): Don't create availability set when using spot instances [#104](https://github.com/openshift/machine-api-provider-azure/pull/104) * [OCPBUGS-24563](https://issues.redhat.com/browse/OCPBUGS-24563): Reduce metrics cardinality [#89](https://github.com/openshift/machine-api-provider-azure/pull/89) * [OCPBUGS-20758](https://issues.redhat.com/browse/OCPBUGS-20758): Bump x/net package to v0.18.0 [#83](https://github.com/openshift/machine-api-provider-azure/pull/83) * [Full changelog](https://github.com/openshift/machine-api-provider-azure/compare/2c0c0ec9d486f737044033f5010a91e117c4e492...62f6e0f3091262a84e1d6240e2086f35635b5b5b) ### [baremetal-installer, installer, installer-artifacts](https://github.com/openshift/installer/tree/d334d540ab3d5f4ec3344b5ded7c454509c3639d) * [OCPBUGS-30629](https://issues.redhat.com/browse/OCPBUGS-30629): baremetal: populate customDeploy in advance [#8129](https://github.com/openshift/installer/pull/8129) * [OCPBUGS-29627](https://issues.redhat.com/browse/OCPBUGS-29627): update RHCOS 4.13 bootimage metadata to 413.92.202402131523-0 [#8038](https://github.com/openshift/installer/pull/8038) * [OCPBUGS-30000](https://issues.redhat.com/browse/OCPBUGS-30000): [release-4.13] Bump containerd for vulnerability fix [#8073](https://github.com/openshift/installer/pull/8073) * [OCPBUGS-28654](https://issues.redhat.com/browse/OCPBUGS-28654): Fix depreciated typo [#7963](https://github.com/openshift/installer/pull/7963) * [OCPBUGS-27453](https://issues.redhat.com/browse/OCPBUGS-27453): baremetal: correct external_http_url for v6-only BMCs [#7934](https://github.com/openshift/installer/pull/7934) * [OCPBUGS-23499](https://issues.redhat.com/browse/OCPBUGS-23499): update RHCOS 4.13 bootimage metadata to 413.92.202401100947-0 [#7920](https://github.com/openshift/installer/pull/7920) * [OCPBUGS-25420](https://issues.redhat.com/browse/OCPBUGS-25420): destroy: gcp: fix destroying regional disks [#7840](https://github.com/openshift/installer/pull/7840) * [OCPBUGS-23464](https://issues.redhat.com/browse/OCPBUGS-23464): Add KMS encryption keys if provided [#7746](https://github.com/openshift/installer/pull/7746) * [OCPBUGS-23141](https://issues.redhat.com/browse/OCPBUGS-23141): Specify google cloud CLI to version 447.0.0 [#7706](https://github.com/openshift/installer/pull/7706) * [OCPBUGS-22939](https://issues.redhat.com/browse/OCPBUGS-22939): azure: validation: validate defaultMachinePlatform [#7679](https://github.com/openshift/installer/pull/7679) * [OCPBUGS-14551](https://issues.redhat.com/browse/OCPBUGS-14551): [vSphere] Upi installation failed due to VMs for master and worker node creation failed [#7229](https://github.com/openshift/installer/pull/7229) * [OCPBUGS-19307](https://issues.redhat.com/browse/OCPBUGS-19307): Implement workaround to allow SNO installations for OKD/FCOS [#7480](https://github.com/openshift/installer/pull/7480) * [Full changelog](https://github.com/openshift/installer/compare/e250b92792b392d8a79139abe6acba6880739744...d334d540ab3d5f4ec3344b5ded7c454509c3639d) ### [baremetal-machine-controllers](https://github.com/openshift/cluster-api-provider-baremetal/tree/336497557b48d67635a7be2bf26ae6a885a67560) * [OCPBUGS-29822](https://issues.redhat.com/browse/OCPBUGS-29822): Extend metal3remediation aggregation role [#212](https://github.com/openshift/cluster-api-provider-baremetal/pull/212) * [OCPBUGS-21701](https://issues.redhat.com/browse/OCPBUGS-21701): Uplift x/net to v0.17.0 [#199](https://github.com/openshift/cluster-api-provider-baremetal/pull/199) * [Full changelog](https://github.com/openshift/cluster-api-provider-baremetal/compare/7de328a2d332833257fde75368e624908a3eec13...336497557b48d67635a7be2bf26ae6a885a67560) ### [baremetal-operator](https://github.com/openshift/baremetal-operator/tree/f6db335c7a6fe564a6ef56a98b71e230e685fc6f) * [OCPBUGS-30629](https://issues.redhat.com/browse/OCPBUGS-30629): Do not update instance_info and deploy_interface for active nodes [#337](https://github.com/openshift/baremetal-operator/pull/337) * [OCPBUGS-23504](https://issues.redhat.com/browse/OCPBUGS-23504): hack for deploying V6-only clusters from dualstack hubs [#321](https://github.com/openshift/baremetal-operator/pull/321) * [OCPBUGS-21167](https://issues.redhat.com/browse/OCPBUGS-21167): Uplift x/net to v0.17.0 [#309](https://github.com/openshift/baremetal-operator/pull/309) * [Full changelog](https://github.com/openshift/baremetal-operator/compare/12e53b8aeee5bb4d576e88dad5611c798928249b...f6db335c7a6fe564a6ef56a98b71e230e685fc6f) ### [baremetal-runtimecfg](https://github.com/openshift/baremetal-runtimecfg/tree/1280cf541c220af73b9886379dad2dfa4921f73b) * [OCPBUGS-26929](https://issues.redhat.com/browse/OCPBUGS-26929): Add .snyk file to ignore vendor and test files [#295](https://github.com/openshift/baremetal-runtimecfg/pull/295) * [OCPBUGS-22207](https://issues.redhat.com/browse/OCPBUGS-22207): deps: upgrade x/sys [#282](https://github.com/openshift/baremetal-runtimecfg/pull/282) * [OCPBUGS-20081](https://issues.redhat.com/browse/OCPBUGS-20081): Increase timeout for bootstrap kubeapi [#278](https://github.com/openshift/baremetal-runtimecfg/pull/278) * [Full changelog](https://github.com/openshift/baremetal-runtimecfg/compare/dc50979bf902b9e217ab694b225f391529b92963...1280cf541c220af73b9886379dad2dfa4921f73b) ### [cli, cli-artifacts, deployer, tools](https://github.com/openshift/oc/tree/7780c379ac62ddfc982b81eb0c4470b9597f505e) * [OCPBUGS-25418](https://issues.redhat.com/browse/OCPBUGS-25418): Add client version in must-gather summary [#1635](https://github.com/openshift/oc/pull/1635) * [OCPBUGS-24461](https://issues.redhat.com/browse/OCPBUGS-24461): Overwrite template's namespace with the explicit one [#1617](https://github.com/openshift/oc/pull/1617) * [AUTH-443](https://issues.redhat.com/browse/AUTH-443): Add OAuth2 Authorization Code Grant Flow for login [#1599](https://github.com/openshift/oc/pull/1599) * [OCPBUGS-22815](https://issues.redhat.com/browse/OCPBUGS-22815): regeneratemco: explicitly check for PlatformStatus field [#1593](https://github.com/openshift/oc/pull/1593) * [OCPBUGS-20298](https://issues.redhat.com/browse/OCPBUGS-20298): Use quay redis image instead docker mysql [#1566](https://github.com/openshift/oc/pull/1566) * [Full changelog](https://github.com/openshift/oc/compare/b77d2d499adb165a4817cfc602a05b3dad96eef4...7780c379ac62ddfc982b81eb0c4470b9597f505e) ### [cloud-credential-operator](https://github.com/openshift/cloud-credential-operator/tree/e1c403be7e7e054ae167c061878805b2d2276b9e) * [OCPBUGS-27912](https://issues.redhat.com/browse/OCPBUGS-27912): Resolve all outstanding snyk vulnerabilities [#651](https://github.com/openshift/cloud-credential-operator/pull/651) * NO-JIRA: Removing andrew from OWNERS [#644](https://github.com/openshift/cloud-credential-operator/pull/644) * [OCPBUGS-25369](https://issues.redhat.com/browse/OCPBUGS-25369): Discover AWS dns suffix from partition and region. [#640](https://github.com/openshift/cloud-credential-operator/pull/640) * [OCPBUGS-21367](https://issues.redhat.com/browse/OCPBUGS-21367): Upgrade golang/x/net for CVE-2023-39325 [#623](https://github.com/openshift/cloud-credential-operator/pull/623) * snyk: exclude vendor/ [#616](https://github.com/openshift/cloud-credential-operator/pull/616) * [Full changelog](https://github.com/openshift/cloud-credential-operator/compare/0621fcaf818f57ab05602259c1eb14db07b68dce...e1c403be7e7e054ae167c061878805b2d2276b9e) ### [cloud-network-config-controller](https://github.com/openshift/cloud-network-config-controller/tree/78d453a5ca0f5e009d3a16e62f2e0e35c3ac5a9c) * [OCPBUGS-22299](https://issues.redhat.com/browse/OCPBUGS-22299): Azure: skip backend pool if attached to an outbound rule [#126](https://github.com/openshift/cloud-network-config-controller/pull/126) * [Full changelog](https://github.com/openshift/cloud-network-config-controller/compare/4f190d6b8c06257071e01b4d75ea9ae33fd20885...78d453a5ca0f5e009d3a16e62f2e0e35c3ac5a9c) ### [cluster-authentication-operator](https://github.com/openshift/cluster-authentication-operator/tree/1801056c175da7d1e8d5507fa4558564740c7f4d) * [OCPBUGS-28760](https://issues.redhat.com/browse/OCPBUGS-28760): Fix http2 [4.13] [#654](https://github.com/openshift/cluster-authentication-operator/pull/654) * [AUTH-443](https://issues.redhat.com/browse/AUTH-443): Add openshift-cli-client OAuth Client [#641](https://github.com/openshift/cluster-authentication-operator/pull/641) * [OCPBUGS-22210](https://issues.redhat.com/browse/OCPBUGS-22210): increase timeout for probes [#638](https://github.com/openshift/cluster-authentication-operator/pull/638) * [Full changelog](https://github.com/openshift/cluster-authentication-operator/compare/a044dd9175d25911b799082fb189e4886391807b...1801056c175da7d1e8d5507fa4558564740c7f4d) ### [cluster-autoscaler](https://github.com/openshift/kubernetes-autoscaler/tree/80cb6c58a87dbe842eb33cf9ec23ff96911e01c9) * [OCPBUGS-30874](https://issues.redhat.com/browse/OCPBUGS-30874): Fix unstructured taint parsing in Cluster API provider [#289](https://github.com/openshift/kubernetes-autoscaler/pull/289) * [OCPBUGS-23272](https://issues.redhat.com/browse/OCPBUGS-23272): Rebase 4.13 branch onto cluster autoscaler 1.26.4 [#268](https://github.com/openshift/kubernetes-autoscaler/pull/268) * [Full changelog](https://github.com/openshift/kubernetes-autoscaler/compare/c58c53bf7a82ee46414c7f7c0f2e0e438da93eeb...80cb6c58a87dbe842eb33cf9ec23ff96911e01c9) ### [cluster-autoscaler-operator](https://github.com/openshift/cluster-autoscaler-operator/tree/ade6cfb16944db8e2151f921640041e0b2a403c3) * [OCPBUGS-20770](https://issues.redhat.com/browse/OCPBUGS-20770): Bump x/net package to v0.18.0 [#299](https://github.com/openshift/cluster-autoscaler-operator/pull/299) * [Full changelog](https://github.com/openshift/cluster-autoscaler-operator/compare/8531634cd2984370912b7530798a85ff4eb86c1e...ade6cfb16944db8e2151f921640041e0b2a403c3) ### [cluster-baremetal-operator](https://github.com/openshift/cluster-baremetal-operator/tree/b5eb7b6c7b85dd8ef51fe138ec7e6b5392391c11) * [OCPBUGS-23504](https://issues.redhat.com/browse/OCPBUGS-23504): hack for deploying V6-only clusters from dualstack hubs [#391](https://github.com/openshift/cluster-baremetal-operator/pull/391) * [OCPBUGS-23444](https://issues.redhat.com/browse/OCPBUGS-23444): Update the deprecated field APIServerInternalIP to APIServerInternalIPs [#385](https://github.com/openshift/cluster-baremetal-operator/pull/385) * [OCPBUGS-20867](https://issues.redhat.com/browse/OCPBUGS-20867): Uplift x/net to v0.17.0 [#370](https://github.com/openshift/cluster-baremetal-operator/pull/370) * [Full changelog](https://github.com/openshift/cluster-baremetal-operator/compare/3d1da56f5dd6f350497fde8be1c2020e7ecf22fc...b5eb7b6c7b85dd8ef51fe138ec7e6b5392391c11) ### [cluster-capi-controllers](https://github.com/openshift/cluster-api/tree/12f767b2bd5de1a2641962f5d86d8564333afc65) * [OCPBUGS-21531](https://issues.redhat.com/browse/OCPBUGS-21531): bump golang.org/x/net to v0.17.0 [#185](https://github.com/openshift/cluster-api/pull/185) * [Full changelog](https://github.com/openshift/cluster-api/compare/507f873307be10d8ddbbbe0fecba68aea7c2b5c1...12f767b2bd5de1a2641962f5d86d8564333afc65) ### [cluster-capi-operator](https://github.com/openshift/cluster-capi-operator/tree/b247793dd364f280ad097f5266b4164740e43a44) * [OCPBUGS-21082](https://issues.redhat.com/browse/OCPBUGS-21082): bump golang.org/x/net to v0.17.0 [#137](https://github.com/openshift/cluster-capi-operator/pull/137) * [Full changelog](https://github.com/openshift/cluster-capi-operator/compare/ce1c9a359ec9ab0c5526cd8594ea59bb52044026...b247793dd364f280ad097f5266b4164740e43a44) ### [cluster-cloud-controller-manager-operator](https://github.com/openshift/cluster-cloud-controller-manager-operator/tree/288b3fe3f2637e3ac80464cc5513011fd3a3c583) * [OCPBUGS-21169](https://issues.redhat.com/browse/OCPBUGS-21169): Bump golang.org/x/net to v0.18.0 [#296](https://github.com/openshift/cluster-cloud-controller-manager-operator/pull/296) * [Full changelog](https://github.com/openshift/cluster-cloud-controller-manager-operator/compare/ef4594ef3f4ca535aa1d34878b79184323ecf481...288b3fe3f2637e3ac80464cc5513011fd3a3c583) ### [cluster-config-operator](https://github.com/openshift/cluster-config-operator/tree/a6d56530c7156bef726005d640c3ded3565104ec) * [OCPBUGS-28802](https://issues.redhat.com/browse/OCPBUGS-28802): Add required PSa labels [#404](https://github.com/openshift/cluster-config-operator/pull/404) * : OCPBUGS-21269: bump library-go to include switch to HTTP/1.1 [#372](https://github.com/openshift/cluster-config-operator/pull/372) * [Full changelog](https://github.com/openshift/cluster-config-operator/compare/a9e658abf7de525b411ff005b65e061e39f58bd6...a6d56530c7156bef726005d640c3ded3565104ec) ### [cluster-control-plane-machine-set-operator](https://github.com/openshift/cluster-control-plane-machine-set-operator/tree/492cc21b66edf7bb0032e7e5bcdf3b94cc38cfd7) * [OCPBUGS-30156](https://issues.redhat.com/browse/OCPBUGS-30156): Never delete a Machine when there's a single Machine in an index [#286](https://github.com/openshift/cluster-control-plane-machine-set-operator/pull/286) * [OCPBUGS-21364](https://issues.redhat.com/browse/OCPBUGS-21364): Bump golang.org/x/net to v0.17.0 [#259](https://github.com/openshift/cluster-control-plane-machine-set-operator/pull/259) * [OCPBUGS-20482](https://issues.redhat.com/browse/OCPBUGS-20482): fix: e2e: add gcp custom type to test framework [#249](https://github.com/openshift/cluster-control-plane-machine-set-operator/pull/249) * [Full changelog](https://github.com/openshift/cluster-control-plane-machine-set-operator/compare/7af4825b90ced0b9e59a418c5f208d5521f0a421...492cc21b66edf7bb0032e7e5bcdf3b94cc38cfd7) ### [cluster-csi-snapshot-controller-operator](https://github.com/openshift/cluster-csi-snapshot-controller-operator/tree/544bc12e412d94153ef711cc0bb55eb40ab6d43e) * [OCPBUGS-21461](https://issues.redhat.com/browse/OCPBUGS-21461): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#168](https://github.com/openshift/cluster-csi-snapshot-controller-operator/pull/168) * [Full changelog](https://github.com/openshift/cluster-csi-snapshot-controller-operator/compare/97b486cb22d56c7ea17b6829606ae0c555bcc426...544bc12e412d94153ef711cc0bb55eb40ab6d43e) ### [cluster-dns-operator](https://github.com/openshift/cluster-dns-operator/tree/759791edae6fcd129e9f04adf6406328892f0f53) * [OCPBUGS-11449](https://issues.redhat.com/browse/OCPBUGS-11449): Set DNS DaemonSet's maxSurge value to 10% [#366](https://github.com/openshift/cluster-dns-operator/pull/366) * [OCPBUGS-21534](https://issues.redhat.com/browse/OCPBUGS-21534): Bump golang.org/x/net/http2 to v0.17.0 for CVE-2023-39325 in cluster-dns-operator [#390](https://github.com/openshift/cluster-dns-operator/pull/390) * [Full changelog](https://github.com/openshift/cluster-dns-operator/compare/c6768d4537b7c2969b77fea26429b2822c0ec844...759791edae6fcd129e9f04adf6406328892f0f53) ### [cluster-etcd-operator](https://github.com/openshift/cluster-etcd-operator/tree/c9b9bec902f93acc8469e0f6b502d0bab1734f67) * [OCPBUGS-30248](https://issues.redhat.com/browse/OCPBUGS-30248): fix panic in health check timeouts [#1217](https://github.com/openshift/cluster-etcd-operator/pull/1217) * [OCPBUGS-30245](https://issues.redhat.com/browse/OCPBUGS-30245): [4.13] Replace nodelister with master nodelister everywhere [#1216](https://github.com/openshift/cluster-etcd-operator/pull/1216) * [OCPBUGS-23572](https://issues.redhat.com/browse/OCPBUGS-23572): Add annotation in the etcd-guard static pod for worklo… [#1163](https://github.com/openshift/cluster-etcd-operator/pull/1163) * [OCPBUGS-23106](https://issues.redhat.com/browse/OCPBUGS-23106): [4.13] Remove z-upgrades from UpgradeBackupController [#1154](https://github.com/openshift/cluster-etcd-operator/pull/1154) * Revert "[release-4.13] OCPBUGS-23044: remove revision stability check from bootstrap complet…" [#1166](https://github.com/openshift/cluster-etcd-operator/pull/1166) * [OCPBUGS-22783](https://issues.redhat.com/browse/OCPBUGS-22783): relax readiness to local serializable requests [#1144](https://github.com/openshift/cluster-etcd-operator/pull/1144) * [OCPBUGS-23044](https://issues.redhat.com/browse/OCPBUGS-23044): remove revision stability check from bootstrap complet… [#1151](https://github.com/openshift/cluster-etcd-operator/pull/1151) * [OCPBUGS-21155](https://issues.redhat.com/browse/OCPBUGS-21155): fixing CVE-2023-39325 by updating dependencies [#1143](https://github.com/openshift/cluster-etcd-operator/pull/1143) * [OCPBUGS-20488](https://issues.redhat.com/browse/OCPBUGS-20488): prioritize podman pull in etcdctl dl [#1136](https://github.com/openshift/cluster-etcd-operator/pull/1136) * [Full changelog](https://github.com/openshift/cluster-etcd-operator/compare/ebb7c5d85ae8c4d20525fdce29db6a43e176541d...c9b9bec902f93acc8469e0f6b502d0bab1734f67) ### [cluster-image-registry-operator](https://github.com/openshift/cluster-image-registry-operator/tree/26ddef6b6f7036de02713bb678c6c8e6a7ea8a04) * [OCPBUGS-29935](https://issues.redhat.com/browse/OCPBUGS-29935): pkg/storage/s3: enable bucket key on encryption settings [#1007](https://github.com/openshift/cluster-image-registry-operator/pull/1007) * [OCPBUGS-22126](https://issues.redhat.com/browse/OCPBUGS-22126): increase storage account key cache expiration [#940](https://github.com/openshift/cluster-image-registry-operator/pull/940) * [OCPBUGS-20698](https://issues.redhat.com/browse/OCPBUGS-20698): mitigate effects of rapid reset [#946](https://github.com/openshift/cluster-image-registry-operator/pull/946) * [Full changelog](https://github.com/openshift/cluster-image-registry-operator/compare/3ed61e2b86c3ff0eddc66baa038a6b30a579ce15...26ddef6b6f7036de02713bb678c6c8e6a7ea8a04) ### [cluster-ingress-operator](https://github.com/openshift/cluster-ingress-operator/tree/5379ce1cb9305d89e0349a3e80fac8801c72eb42) * [OCPBUGS-20781](https://issues.redhat.com/browse/OCPBUGS-20781): Bump golang.org/x/net for CVE-2023-44487 [#987](https://github.com/openshift/cluster-ingress-operator/pull/987) * [OCPBUGS-22402](https://issues.redhat.com/browse/OCPBUGS-22402): test/e2e: Don't use openshift/origin-node [#991](https://github.com/openshift/cluster-ingress-operator/pull/991) * [Full changelog](https://github.com/openshift/cluster-ingress-operator/compare/2ecad04e6dcd3338b7180529a9f55cb13dff276d...5379ce1cb9305d89e0349a3e80fac8801c72eb42) ### [cluster-kube-apiserver-operator](https://github.com/openshift/cluster-kube-apiserver-operator/tree/a5ca01222476bb9f05916217be6f94f08e91a4ec) * : OCPBUGS-24023: Add workload partitioning annotation [#1591](https://github.com/openshift/cluster-kube-apiserver-operator/pull/1591) * : OCPBUGS-20880: bump library-go to include switch to HTTP/1.1 [#1573](https://github.com/openshift/cluster-kube-apiserver-operator/pull/1573) * [Full changelog](https://github.com/openshift/cluster-kube-apiserver-operator/compare/d525f5d788e2a8bbf7dd01902084c3587d32a58f...a5ca01222476bb9f05916217be6f94f08e91a4ec) ### [cluster-kube-cluster-api-operator](https://github.com/openshift/cluster-api-operator/tree/18c076b1b56e06086fc3e4ea89d6922cca2d6b4a) * [OCPBUGS-20981](https://issues.redhat.com/browse/OCPBUGS-20981): bump golang.org/x/net to v0.17.0 [#28](https://github.com/openshift/cluster-api-operator/pull/28) * [Full changelog](https://github.com/openshift/cluster-api-operator/compare/8d627a55e6d765019f4879ea20e2016e6cc0be63...18c076b1b56e06086fc3e4ea89d6922cca2d6b4a) ### [cluster-kube-controller-manager-operator](https://github.com/openshift/cluster-kube-controller-manager-operator/tree/dac7113696160d1170d9b3773afa4a4b7cb2099b) * [OCPBUGS-27066](https://issues.redhat.com/browse/OCPBUGS-27066): bump(library-go)=release-4.13 [#788](https://github.com/openshift/cluster-kube-controller-manager-operator/pull/788) * [OCPBUGS-21103](https://issues.redhat.com/browse/OCPBUGS-21103): Drop flags removed in k8s 1.26 [4.13] [#766](https://github.com/openshift/cluster-kube-controller-manager-operator/pull/766) * [OCPBUGS-21078](https://issues.redhat.com/browse/OCPBUGS-21078): Bump deps to address CVE-2023-44487 [4.13] [#758](https://github.com/openshift/cluster-kube-controller-manager-operator/pull/758) * [Full changelog](https://github.com/openshift/cluster-kube-controller-manager-operator/compare/cc6a31430749e2e0a1b0d9db18c6e664dd4b626e...dac7113696160d1170d9b3773afa4a4b7cb2099b) ### [cluster-kube-scheduler-operator](https://github.com/openshift/cluster-kube-scheduler-operator/tree/2e7c269b358223b89632b35840e6a91cdc7bb9aa) * [OCPBUGS-27065](https://issues.redhat.com/browse/OCPBUGS-27065): bump(library-go)=release-4.13 [#528](https://github.com/openshift/cluster-kube-scheduler-operator/pull/528) * [OCPBUGS-21811](https://issues.redhat.com/browse/OCPBUGS-21811): Bump deps to address CVE-2023-44487 [#502](https://github.com/openshift/cluster-kube-scheduler-operator/pull/502) * [Full changelog](https://github.com/openshift/cluster-kube-scheduler-operator/compare/b4c50a4d65f6971abeed1da815aac038d8700715...2e7c269b358223b89632b35840e6a91cdc7bb9aa) ### [cluster-kube-storage-version-migrator-operator](https://github.com/openshift/cluster-kube-storage-version-migrator-operator/tree/721de5d64083b17c22f6b784bb2c78af39d7b3b0) * : OCPBUGS-21355: bump library-go to include switch to HTTP/1.1 [#97](https://github.com/openshift/cluster-kube-storage-version-migrator-operator/pull/97) * [Full changelog](https://github.com/openshift/cluster-kube-storage-version-migrator-operator/compare/9f475980d1e6a70f0e9400aec6f15e5f5a6132b6...721de5d64083b17c22f6b784bb2c78af39d7b3b0) ### [cluster-machine-approver](https://github.com/openshift/cluster-machine-approver/tree/25fe7b4bd96baba2eef8c0c22521fdc8c08f981d) * [OCPBUGS-21447](https://issues.redhat.com/browse/OCPBUGS-21447): Bump x/net package to v0.18.0 [#213](https://github.com/openshift/cluster-machine-approver/pull/213) * [OCPBUGS-23368](https://issues.redhat.com/browse/OCPBUGS-23368): Filter non node CSRs in metrics [#210](https://github.com/openshift/cluster-machine-approver/pull/210) * [Full changelog](https://github.com/openshift/cluster-machine-approver/compare/ce66cd5420829c20837662770451ee1c64294d47...25fe7b4bd96baba2eef8c0c22521fdc8c08f981d) ### [cluster-monitoring-operator](https://github.com/openshift/cluster-monitoring-operator/tree/940be901f1ce6c462dd1b437e51a28761362c292) * [OCPBUGS-25388](https://issues.redhat.com/browse/OCPBUGS-25388): Add RHACM telemetry metric for 4.13 [#2203](https://github.com/openshift/cluster-monitoring-operator/pull/2203) * [OCPBUGS-21457](https://issues.redhat.com/browse/OCPBUGS-21457): Set the new --disable-http2 flag for prometheus-adapter to disable HTTP2 [#2146](https://github.com/openshift/cluster-monitoring-operator/pull/2146) * [OCPBUGS-22920](https://issues.redhat.com/browse/OCPBUGS-22920): jsonnet: pin commits [#2144](https://github.com/openshift/cluster-monitoring-operator/pull/2144) * [OCPBUGS-22842](https://issues.redhat.com/browse/OCPBUGS-22842): [release-4.13] add RHACS telemetry metrics [#2139](https://github.com/openshift/cluster-monitoring-operator/pull/2139) * [OCPBUGS-22308](https://issues.redhat.com/browse/OCPBUGS-22308): fix: force HTTP/1.1 connections [#2134](https://github.com/openshift/cluster-monitoring-operator/pull/2134) * [OCPBUGS-21250](https://issues.redhat.com/browse/OCPBUGS-21250): upgrade golang.org/x/net to v0.17.0 [#2122](https://github.com/openshift/cluster-monitoring-operator/pull/2122) * [OCPBUGS-22099](https://issues.redhat.com/browse/OCPBUGS-22099): Extend remote write test timeout [#2127](https://github.com/openshift/cluster-monitoring-operator/pull/2127) * [Full changelog](https://github.com/openshift/cluster-monitoring-operator/compare/547c850b30e2183f8a6c9842c82ce672ba72cc76...940be901f1ce6c462dd1b437e51a28761362c292) ### [cluster-network-operator](https://github.com/openshift/cluster-network-operator/tree/257435702312e418be694f4b98b8fe89557030c6) * [OCPBUGS-30150](https://issues.redhat.com/browse/OCPBUGS-30150): ipsec: fix openssl typo [#2290](https://github.com/openshift/cluster-network-operator/pull/2290) * [OCPBUGS-29674](https://issues.redhat.com/browse/OCPBUGS-29674): add env var in whereabouts-reconciler daemonset [#2279](https://github.com/openshift/cluster-network-operator/pull/2279) * [OCPBUGS-29301](https://issues.redhat.com/browse/OCPBUGS-29301): Update ingressconfig_controller to use field Manager [#2267](https://github.com/openshift/cluster-network-operator/pull/2267) * [OCPBUGS-28208](https://issues.redhat.com/browse/OCPBUGS-28208): ipsec: fix oopsy from 2e3fc8e (cherry-pick of 980c08318e) [#2222](https://github.com/openshift/cluster-network-operator/pull/2222) * [OCPBUGS-28777](https://issues.redhat.com/browse/OCPBUGS-28777): fix whereabouts conformance test failures [#2241](https://github.com/openshift/cluster-network-operator/pull/2241) * [OCPBUGS-27958](https://issues.redhat.com/browse/OCPBUGS-27958): Add ConfigMap mount to the whereabouts-reconciler DaemonSet [#2220](https://github.com/openshift/cluster-network-operator/pull/2220) * NO-JIRA: add kyrtapz as reviewer and approver for release 4.13 [#2229](https://github.com/openshift/cluster-network-operator/pull/2229) * [OCPBUGS-22293](https://issues.redhat.com/browse/OCPBUGS-22293): remove all managed fields used by old manager [#2094](https://github.com/openshift/cluster-network-operator/pull/2094) * [OCPBUGS-24570](https://issues.redhat.com/browse/OCPBUGS-24570): Disable weak SSH cipher suitesRm weak ciphers 4.13 [#2163](https://github.com/openshift/cluster-network-operator/pull/2163) * [OCPBUGS-21716](https://issues.redhat.com/browse/OCPBUGS-21716): Bump golang.org/x/net and github.com/openshift/library-go [#2123](https://github.com/openshift/cluster-network-operator/pull/2123) * [OCPBUGS-22896](https://issues.redhat.com/browse/OCPBUGS-22896): run update-codegen after adding maxLogFiles cfg [#2162](https://github.com/openshift/cluster-network-operator/pull/2162) * [OCPBUGS-22971](https://issues.redhat.com/browse/OCPBUGS-22971): HyperShift: Use the local konnectivity proxy when checking proxy readiness [#2098](https://github.com/openshift/cluster-network-operator/pull/2098) * [OCPBUGS-22896](https://issues.redhat.com/browse/OCPBUGS-22896): Remove oldest ovn acl log files when file limit exceeded [#2097](https://github.com/openshift/cluster-network-operator/pull/2097) * [SDN-4184](https://issues.redhat.com/browse/SDN-4184): Limit OVN-Kubernetes RBAC permissions [#2093](https://github.com/openshift/cluster-network-operator/pull/2093) * [OCPBUGS-20278](https://issues.redhat.com/browse/OCPBUGS-20278): Edited multus-admission-controller deployment config to not add autoount a service account token [#1885](https://github.com/openshift/cluster-network-operator/pull/1885) * [Full changelog](https://github.com/openshift/cluster-network-operator/compare/961ca3d65ce046e29cd105e2c18563bd91dbfdae...257435702312e418be694f4b98b8fe89557030c6) ### [cluster-node-tuning-operator](https://github.com/openshift/cluster-node-tuning-operator/tree/4ce5b7501c27c6ced4f4b433c0e983766608e853) * [OCPBUGS-24353](https://issues.redhat.com/browse/OCPBUGS-24353): rps: cherry-picks of rps fixes (#865) [#865](https://github.com/openshift/cluster-node-tuning-operator/pull/865) * Disable HTTP/2 for webhook and metrics servers (#846) [#846](https://github.com/openshift/cluster-node-tuning-operator/pull/846) * Remove obsolete protocols and weak ciphers (#843) [#843](https://github.com/openshift/cluster-node-tuning-operator/pull/843) * [OCPBUGS-18493](https://issues.redhat.com/browse/OCPBUGS-18493): e2e: deflake IRQ load-balancing (#782) [#782](https://github.com/openshift/cluster-node-tuning-operator/pull/782) * Use RHEL9 as a base (#829) [#829](https://github.com/openshift/cluster-node-tuning-operator/pull/829) * [OCPBUGS-17943](https://issues.redhat.com/browse/OCPBUGS-17943): Add rtentsk plugin to pp tuned profile Signed-off-by: Brent Rowsell <browsell@redhat.com> (#796) [#796](https://github.com/openshift/cluster-node-tuning-operator/pull/796) * nto: avoid timeout when there are too many CSV (#818) [#818](https://github.com/openshift/cluster-node-tuning-operator/pull/818) * [Full changelog](https://github.com/openshift/cluster-node-tuning-operator/compare/9cdb2d77ec7f76fa65456bb33e956c920c46f547...4ce5b7501c27c6ced4f4b433c0e983766608e853) ### [cluster-openshift-apiserver-operator](https://github.com/openshift/cluster-openshift-apiserver-operator/tree/9abb220ac11f370f323f2c248d3ee377394c88b8) * : OCPBUGS-20707: bump library-go to include switch to HTTP/1.1 [#555](https://github.com/openshift/cluster-openshift-apiserver-operator/pull/555) * [OCPBUGS-22210](https://issues.redhat.com/browse/OCPBUGS-22210): increase timeout for probes [#553](https://github.com/openshift/cluster-openshift-apiserver-operator/pull/553) * [Full changelog](https://github.com/openshift/cluster-openshift-apiserver-operator/compare/ea4f097def493950e6e65068284084935b8ce4d9...9abb220ac11f370f323f2c248d3ee377394c88b8) ### [cluster-openshift-controller-manager-operator](https://github.com/openshift/cluster-openshift-controller-manager-operator/tree/d2818fb5a41defcf3af577fa4cb0a247700ce44a) * [OCPBUGS-20796](https://issues.redhat.com/browse/OCPBUGS-20796): bump(k8s,openshift) to address CVE-2023-44487 [#310](https://github.com/openshift/cluster-openshift-controller-manager-operator/pull/310) * [Full changelog](https://github.com/openshift/cluster-openshift-controller-manager-operator/compare/9a8aba8cad6491a31e743a7e366d758351482d88...d2818fb5a41defcf3af577fa4cb0a247700ce44a) ### [cluster-platform-operators-manager](https://github.com/openshift/platform-operators/tree/312c5f24b5711a764350de899b83443a87296983) * [OCPBUGS-20998](https://issues.redhat.com/browse/OCPBUGS-20998): [release-4.13] Bump golang.org/x/net to v0.17.0 [#97](https://github.com/openshift/platform-operators/pull/97) * [Full changelog](https://github.com/openshift/platform-operators/compare/471a80685581ff95fec3bee818f6ee409836eb8e...312c5f24b5711a764350de899b83443a87296983) ### [cluster-policy-controller](https://github.com/openshift/cluster-policy-controller/tree/3b0d075530fdbfdacdfe574151a3313f5231459c) * [OCPBUGS-21103](https://issues.redhat.com/browse/OCPBUGS-21103): Bump deps to address CVE-2023-44487 [4.13] [#135](https://github.com/openshift/cluster-policy-controller/pull/135) * [Full changelog](https://github.com/openshift/cluster-policy-controller/compare/8d2af85d0b6dcf09256bd9fecc5d36ac77bc41d1...3b0d075530fdbfdacdfe574151a3313f5231459c) ### [cluster-samples-operator](https://github.com/openshift/cluster-samples-operator/tree/bcc08e9609e9c39d212857efd27d67753c64d91e) * [OCPBUGS-22390](https://issues.redhat.com/browse/OCPBUGS-22390): Sync library to remove invalid dockerhub references for OKD [#521](https://github.com/openshift/cluster-samples-operator/pull/521) * [Full changelog](https://github.com/openshift/cluster-samples-operator/compare/f785bad1227439dfdb627538b3f7ecd0eb28f33c...bcc08e9609e9c39d212857efd27d67753c64d91e) ### [cluster-storage-operator](https://github.com/openshift/cluster-storage-operator/tree/5cd56c344f5aae7ce53f1301115e247a1fd6fed5) * [OCPBUGS-21284](https://issues.redhat.com/browse/OCPBUGS-21284): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#406](https://github.com/openshift/cluster-storage-operator/pull/406) * [Full changelog](https://github.com/openshift/cluster-storage-operator/compare/6769015121cc5212b13995e1317aea8e22ebda55...5cd56c344f5aae7ce53f1301115e247a1fd6fed5) ### [cluster-version-operator](https://github.com/openshift/cluster-version-operator/tree/24517b23286b636f50390f9167b41b84da8514cf) * [OCPBUGS-27049](https://issues.redhat.com/browse/OCPBUGS-27049): pkg/cvo/availableupdates: Only bump LastAttempt on Cincinnati pulls [#1019](https://github.com/openshift/cluster-version-operator/pull/1019) * [OCPBUGS-20744](https://issues.redhat.com/browse/OCPBUGS-20744): [4.13] Bump http-related deps [#989](https://github.com/openshift/cluster-version-operator/pull/989) * [OCPBUGS-19472](https://issues.redhat.com/browse/OCPBUGS-19472): Reconcile Volumes in SCCs and flag Upgradeable=False when detecting modified SCC [#969](https://github.com/openshift/cluster-version-operator/pull/969) * [OCPBUGS-20321](https://issues.redhat.com/browse/OCPBUGS-20321): pkg/cvo/sync_worker: Always enable the DeploymentConfig capability [#981](https://github.com/openshift/cluster-version-operator/pull/981) * [OCPBUGS-19828](https://issues.redhat.com/browse/OCPBUGS-19828): pkg/clusterconditions/promql: Warm cache with 1s delay [#974](https://github.com/openshift/cluster-version-operator/pull/974) * [Full changelog](https://github.com/openshift/cluster-version-operator/compare/6362a2bde471b49d0f275f0e100df4007bbba4d2...24517b23286b636f50390f9167b41b84da8514cf) ### [console](https://github.com/openshift/console/tree/80468e2e8b043d131d312f8bde5a1420e736ef1f) * [OCPBUGS-29063](https://issues.redhat.com/browse/OCPBUGS-29063): add additional check to determine if file is binary [#13579](https://github.com/openshift/console/pull/13579) * [OCPBUGS-28788](https://issues.redhat.com/browse/OCPBUGS-28788): Copy response code from proxied plugin requests [#13561](https://github.com/openshift/console/pull/13561) * [OCPBUGS-29243](https://issues.redhat.com/browse/OCPBUGS-29243): Add a new allowInsecure option to the internet proxy [#13593](https://github.com/openshift/console/pull/13593) * [OCPBUGS-27406](https://issues.redhat.com/browse/OCPBUGS-27406): Add Pipeline metrics tab using plugin [#13525](https://github.com/openshift/console/pull/13525) * [OCPBUGS-23483](https://issues.redhat.com/browse/OCPBUGS-23483): add access to create, edit and delete silences for developer user from developer perspective [#13349](https://github.com/openshift/console/pull/13349) * [OCPBUGS-25427](https://issues.redhat.com/browse/OCPBUGS-25427): Fix plugin proxy handler [#13449](https://github.com/openshift/console/pull/13449) * [OCPBUGS-25465](https://issues.redhat.com/browse/OCPBUGS-25465): fix runtime error on Node details Overview when Machin… [#13452](https://github.com/openshift/console/pull/13452) * [OCPBUGS-25146](https://issues.redhat.com/browse/OCPBUGS-25146): add access review for impersonate [#13437](https://github.com/openshift/console/pull/13437) * [OCPBUGS-24591](https://issues.redhat.com/browse/OCPBUGS-24591): ConsolePlugin metrics must no longer be grouped by the vendor [#13424](https://github.com/openshift/console/pull/13424) * [OCPBUGS-22241](https://issues.redhat.com/browse/OCPBUGS-22241): Save also the location.search and .hash values in localStorage to restore them after login [#13271](https://github.com/openshift/console/pull/13271) * [OCPBUGS-24240](https://issues.redhat.com/browse/OCPBUGS-24240): Subsequent PipelineRuns take initial PipelineRun name into account [#13385](https://github.com/openshift/console/pull/13385) * [OCPBUGS-23497](https://issues.redhat.com/browse/OCPBUGS-23497): Cannot Edit Shipwright Build [#13352](https://github.com/openshift/console/pull/13352) * [OCPBUGS-11316](https://issues.redhat.com/browse/OCPBUGS-11316): Fix description for BuildAdapter SDK extension [#12703](https://github.com/openshift/console/pull/12703) * [OCPBUGS-22986](https://issues.redhat.com/browse/OCPBUGS-22986): Correct logout process [#13310](https://github.com/openshift/console/pull/13310) * [OCPBUGS-23065](https://issues.redhat.com/browse/OCPBUGS-23065): remove expandable toggle for conditional update risk d… [#13316](https://github.com/openshift/console/pull/13316) * [OCPBUGS-22784](https://issues.redhat.com/browse/OCPBUGS-22784): add support for new features annotations while preservi… [#13299](https://github.com/openshift/console/pull/13299) * [OCPBUGS-19532](https://issues.redhat.com/browse/OCPBUGS-19532): use active namespace in Create cta href of create action for operator backed [#13179](https://github.com/openshift/console/pull/13179) * [OCPBUGS-18271](https://issues.redhat.com/browse/OCPBUGS-18271): update the KnativeServing API version to v1beta1 for global-config extension [#13112](https://github.com/openshift/console/pull/13112) * [OCPBUGS-20232](https://issues.redhat.com/browse/OCPBUGS-20232): show all the legends for Pipeline metrics in PipelineRun TaskRun Duration chart [#13224](https://github.com/openshift/console/pull/13224) * [OCPBUGS-20231](https://issues.redhat.com/browse/OCPBUGS-20231): fetch TaskRuns without selector and reduces the get TaskRuns requests [#13223](https://github.com/openshift/console/pull/13223) * [OCPBUGS-20330](https://issues.redhat.com/browse/OCPBUGS-20330): Check if filtered object contains name property [#13227](https://github.com/openshift/console/pull/13227) * [Full changelog](https://github.com/openshift/console/compare/1146612201591c134de345b85ff13ceeaa444b9f...80468e2e8b043d131d312f8bde5a1420e736ef1f) ### [console-operator](https://github.com/openshift/console-operator/tree/b3dea8462dbb7e7d5ca6a67c932640e7710c99d4) * [OCPBUGS-30599](https://issues.redhat.com/browse/OCPBUGS-30599): Disable HTTP/2 for webhook [#875](https://github.com/openshift/console-operator/pull/875) * [OCPBUGS-21008](https://issues.redhat.com/browse/OCPBUGS-21008): [release-4.13] Bump library-go and golang.org/x/net [#866](https://github.com/openshift/console-operator/pull/866) * [OCPBUGS-6208](https://issues.redhat.com/browse/OCPBUGS-6208): Updating openshift-enterprise-console-operator images to be consistent with ART [#872](https://github.com/openshift/console-operator/pull/872) * [OCPBUGS-24591](https://issues.redhat.com/browse/OCPBUGS-24591): ConsolePlugin metrics must no longer be grouped by the vendor [#821](https://github.com/openshift/console-operator/pull/821) * [OCPBUGS-22333](https://issues.redhat.com/browse/OCPBUGS-22333): Make enabled plugins unique [#805](https://github.com/openshift/console-operator/pull/805) * [Full changelog](https://github.com/openshift/console-operator/compare/dd6939f9a9bf2e3a800ba10a78b4e309f2a0a3c3...b3dea8462dbb7e7d5ca6a67c932640e7710c99d4) ### [container-networking-plugins](https://github.com/openshift/containernetworking-plugins/tree/614ca3c35e1847f38f0f427c04a064cd31ac5002) * [OCPBUGS-20594](https://issues.redhat.com/browse/OCPBUGS-20594): build(deps): bump golang.org/x/net from 0.10.0 to 0.17.0 [backport 4.13] [#130](https://github.com/openshift/containernetworking-plugins/pull/130) * [Full changelog](https://github.com/openshift/containernetworking-plugins/compare/dbf24deae8df2b7ccc4c468fddcbb4a19214afa5...614ca3c35e1847f38f0f427c04a064cd31ac5002) ### [coredns](https://github.com/openshift/coredns/tree/298d919368ea0e5cca548354aa78c6e98044b09d) * [OCPBUGS-28205](https://issues.redhat.com/browse/OCPBUGS-28205): UPSTREAM: 6277: openshift: Fix OCPBUGS-28205 [#113](https://github.com/openshift/coredns/pull/113) * [OCPBUGS-21046](https://issues.redhat.com/browse/OCPBUGS-21046): UPSTREAM: <carry>: openshift: Address CVE-2023-39325 [#102](https://github.com/openshift/coredns/pull/102) * [Full changelog](https://github.com/openshift/coredns/compare/598440f54234b44ab650be9af7b88f70336b3941...298d919368ea0e5cca548354aa78c6e98044b09d) ### [csi-driver-manila, openstack-cinder-csi-driver, openstack-cloud-controller-manager](https://github.com/openshift/cloud-provider-openstack/tree/c3b7d2f5d7b6be7353edffd811fcd55e8bf0af32) * Switch to a new CI [#2444](https://github.com/openshift/cloud-provider-openstack/pull/2444) * [Full changelog](https://github.com/openshift/cloud-provider-openstack/compare/c59255a34811a412bb9c7af4d176d8cdebf04367...c3b7d2f5d7b6be7353edffd811fcd55e8bf0af32) ### [csi-driver-manila-operator](https://github.com/openshift/csi-driver-manila-operator/tree/596a53c8fb79eddf85bad8deb504536adf228128) * [OCPBUGS-26224](https://issues.redhat.com/browse/OCPBUGS-26224): Fix selector for manila-csi-driver-controller-metrics service [#224](https://github.com/openshift/csi-driver-manila-operator/pull/224) * [Full changelog](https://github.com/openshift/csi-driver-manila-operator/compare/b1295cd1a5978faa503c199d59d129e3ecfe2aeb...596a53c8fb79eddf85bad8deb504536adf228128) ### [csi-driver-shared-resource, csi-driver-shared-resource-webhook](https://github.com/openshift/csi-driver-shared-resource/tree/01bbb23b627835354f6177b4b44cfc50bd6d9a2e) * [OCPBUGS-28953](https://issues.redhat.com/browse/OCPBUGS-28953): Replace 'coreydaley' with 'sayan-biswas' in OWNERS file [#168](https://github.com/openshift/csi-driver-shared-resource/pull/168) * [OCPBUGS-23116](https://issues.redhat.com/browse/OCPBUGS-23116): Should reference configmaps instead of secrets [#153](https://github.com/openshift/csi-driver-shared-resource/pull/153) * [OCPBUGS-20719](https://issues.redhat.com/browse/OCPBUGS-20719): bump golang.org/x/net to v0.17.0 [#147](https://github.com/openshift/csi-driver-shared-resource/pull/147) * [Full changelog](https://github.com/openshift/csi-driver-shared-resource/compare/f797d453f112aab86f3b7705c00ea871c2351d4a...01bbb23b627835354f6177b4b44cfc50bd6d9a2e) ### [csi-driver-shared-resource-operator](https://github.com/openshift/csi-driver-shared-resource-operator/tree/bc169d2d8d1cd128770d2202c6cc00e5328e4e73) * [OCPBUGS-28958](https://issues.redhat.com/browse/OCPBUGS-28958): Replace 'coreydaley' with 'sayan-biswas' in OWNERS file [#104](https://github.com/openshift/csi-driver-shared-resource-operator/pull/104) * [OCPBUGS-20806](https://issues.redhat.com/browse/OCPBUGS-20806): bump golang.org/x/net to v0.17.0 [#87](https://github.com/openshift/csi-driver-shared-resource-operator/pull/87) * [Full changelog](https://github.com/openshift/csi-driver-shared-resource-operator/compare/318c84a5cd3ffa9d92d7e7bf6c8dc4008dc132cf...bc169d2d8d1cd128770d2202c6cc00e5328e4e73) ### [csi-external-attacher](https://github.com/openshift/csi-external-attacher/tree/d92908438817984fc47558fdaa03805d8c3b256c) * [OCPBUGS-21161](https://issues.redhat.com/browse/OCPBUGS-21161): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#61](https://github.com/openshift/csi-external-attacher/pull/61) * [Full changelog](https://github.com/openshift/csi-external-attacher/compare/e9d59a2d66491d60d43488e05af7b4b673c722fd...d92908438817984fc47558fdaa03805d8c3b256c) ### [csi-external-provisioner](https://github.com/openshift/csi-external-provisioner/tree/0bf126b77a721ddaa4706fcb41f8b7be8d292492) * [OCPBUGS-20759](https://issues.redhat.com/browse/OCPBUGS-20759): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#73](https://github.com/openshift/csi-external-provisioner/pull/73) * [Full changelog](https://github.com/openshift/csi-external-provisioner/compare/f1fa8099e31e57452b7cf6f2e1ca288ae21ce78f...0bf126b77a721ddaa4706fcb41f8b7be8d292492) ### [csi-external-resizer](https://github.com/openshift/csi-external-resizer/tree/e8036caff2482648a18c1ac776cf9d2474569d10) * [OCPBUGS-20908](https://issues.redhat.com/browse/OCPBUGS-20908): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#148](https://github.com/openshift/csi-external-resizer/pull/148) * [Full changelog](https://github.com/openshift/csi-external-resizer/compare/974ac363a4f95b810ebb6f09ba26dedf1c8b8a4a...e8036caff2482648a18c1ac776cf9d2474569d10) ### [csi-external-snapshotter, csi-snapshot-controller, csi-snapshot-validation-webhook](https://github.com/openshift/csi-external-snapshotter/tree/c8a7a097f68b37ad06a87a4b5c480daeab45be85) * [OCPBUGS-29728](https://issues.redhat.com/browse/OCPBUGS-29728): cherry-pick:release-4.13: OCPBUGS-29244 Update VolumeSnapshot and VolumeSnapshotContent using JSON patch [#141](https://github.com/openshift/csi-external-snapshotter/pull/141) * [OCPBUGS-21011](https://issues.redhat.com/browse/OCPBUGS-21011): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#110](https://github.com/openshift/csi-external-snapshotter/pull/110) * [Full changelog](https://github.com/openshift/csi-external-snapshotter/compare/3f52ee74753f7823f102c239d0750784b64b6398...c8a7a097f68b37ad06a87a4b5c480daeab45be85) ### [csi-livenessprobe](https://github.com/openshift/csi-livenessprobe/tree/3587db51b8a672a2d3be2ac48ea107e474f33402) * [OCPBUGS-20636](https://issues.redhat.com/browse/OCPBUGS-20636): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#51](https://github.com/openshift/csi-livenessprobe/pull/51) * [Full changelog](https://github.com/openshift/csi-livenessprobe/compare/a888237c9ab43eab0ca992f0b18eff114ea4ade1...3587db51b8a672a2d3be2ac48ea107e474f33402) ### [csi-node-driver-registrar](https://github.com/openshift/csi-node-driver-registrar/tree/9ea90f34485500a525fcaad3d79ee82a41402d47) * [OCPBUGS-20686](https://issues.redhat.com/browse/OCPBUGS-20686): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#53](https://github.com/openshift/csi-node-driver-registrar/pull/53) * [Full changelog](https://github.com/openshift/csi-node-driver-registrar/compare/5f13d5e6f5b06a99995e0697d83bbdb36efceb46...9ea90f34485500a525fcaad3d79ee82a41402d47) ### [docker-builder](https://github.com/openshift/builder/tree/0155fb1876cd809c97b46dff0660931046ab6076) * [OCPBUGS-22468](https://issues.redhat.com/browse/OCPBUGS-22468): [release-4.13] Bump github.com/sigstore/rekor [#374](https://github.com/openshift/builder/pull/374) * [OCPBUGS-23021](https://issues.redhat.com/browse/OCPBUGS-23021): Add -p flag to cp command to preserve timestamps [#371](https://github.com/openshift/builder/pull/371) * [OCPBUGS-20709](https://issues.redhat.com/browse/OCPBUGS-20709): [release-4.13] Bump golang.org/x/net [#363](https://github.com/openshift/builder/pull/363) * [Full changelog](https://github.com/openshift/builder/compare/1fec8a28a78b81aabc2bcbe8ac4843c8b7938230...0155fb1876cd809c97b46dff0660931046ab6076) ### [egress-router-cni](https://github.com/openshift/egress-router-cni/tree/dfe03737f1562e81aa09101e4a48f039245bd339) * [OCPBUGS-11648](https://issues.redhat.com/browse/OCPBUGS-11648): update go-yaml to v2.4.0 [#68](https://github.com/openshift/egress-router-cni/pull/68) * [Full changelog](https://github.com/openshift/egress-router-cni/compare/756e38455b8e08a34510e188673c77503dca3ff1...dfe03737f1562e81aa09101e4a48f039245bd339) ### [etcd](https://github.com/openshift/etcd/tree/8e02ad96b267b98912366e4784a16973f98c719f) * [OCPBUGS-28734](https://issues.redhat.com/browse/OCPBUGS-28734): Rebase etcd 3.5.12 openshift 4.13 [#245](https://github.com/openshift/etcd/pull/245) * [ETCD-537](https://issues.redhat.com/browse/ETCD-537): bump build root go1.20 [#252](https://github.com/openshift/etcd/pull/252) * [OCPBUGS-26925](https://issues.redhat.com/browse/OCPBUGS-26925): Rebase etcd 3.5.11 openshift 4.13 [#239](https://github.com/openshift/etcd/pull/239) * [OCPBUGS-22697](https://issues.redhat.com/browse/OCPBUGS-22697): [4.13] Carrying fixes for CVE-2023-44487 [#225](https://github.com/openshift/etcd/pull/225) * [Full changelog](https://github.com/openshift/etcd/compare/7efbc019a20e4c025d482749d49d0d72892dbfe1...8e02ad96b267b98912366e4784a16973f98c719f) ### [gcp-cloud-controller-manager](https://github.com/openshift/cloud-provider-gcp/tree/507fea9800dc63da95ce551d2fb03219d0b0597a) * [OCPBUGS-21303](https://issues.redhat.com/browse/OCPBUGS-21303): Bump golang.org/x/net to v0.18.0 [#43](https://github.com/openshift/cloud-provider-gcp/pull/43) * [Full changelog](https://github.com/openshift/cloud-provider-gcp/compare/efaf4dc692072338d472f086c9f691c71f4a028d...507fea9800dc63da95ce551d2fb03219d0b0597a) ### [gcp-cluster-api-controllers](https://github.com/openshift/cluster-api-provider-gcp/tree/b8a2772574aacf16a998ff7c7ba24000eff60d07) * [OCPBUGS-21398](https://issues.redhat.com/browse/OCPBUGS-21398): Bump golang.org/x/net to v0.17.0 [#204](https://github.com/openshift/cluster-api-provider-gcp/pull/204) * [Full changelog](https://github.com/openshift/cluster-api-provider-gcp/compare/eaeccca9082e1c02ad3422ff49e69cc595bd2ec6...b8a2772574aacf16a998ff7c7ba24000eff60d07) ### [gcp-machine-controllers](https://github.com/openshift/machine-api-provider-gcp/tree/e53a397d838137a37895fe668cba4857a82e7da2) * [OCPBUGS-24563](https://issues.redhat.com/browse/OCPBUGS-24563): Reduce metrics cardinality. [#74](https://github.com/openshift/machine-api-provider-gcp/pull/74) * [OCPBUGS-20851](https://issues.redhat.com/browse/OCPBUGS-20851): Bump x/net package to v0.18.0 [#68](https://github.com/openshift/machine-api-provider-gcp/pull/68) * [Full changelog](https://github.com/openshift/machine-api-provider-gcp/compare/38ddff06b72b364d1c994582d7ae3f119ef5d1a8...e53a397d838137a37895fe668cba4857a82e7da2) ### [gcp-pd-csi-driver](https://github.com/openshift/gcp-pd-csi-driver/tree/81e6074605854246cdab8425a7289ad83169571a) * [OCPBUGS-20735](https://issues.redhat.com/browse/OCPBUGS-20735): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#46](https://github.com/openshift/gcp-pd-csi-driver/pull/46) * [Full changelog](https://github.com/openshift/gcp-pd-csi-driver/compare/c30195c5c3148bf6e00795b49a79954e6d920130...81e6074605854246cdab8425a7289ad83169571a) ### [gcp-pd-csi-driver-operator](https://github.com/openshift/gcp-pd-csi-driver-operator/tree/08c561b8292b4a5de3d5bc553a3e463b1f93ec0c) * [OCPBUGS-20827](https://issues.redhat.com/browse/OCPBUGS-20827): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#88](https://github.com/openshift/gcp-pd-csi-driver-operator/pull/88) * [Full changelog](https://github.com/openshift/gcp-pd-csi-driver-operator/compare/6534fed3d667750a54fb6750bffc09bee61832e8...08c561b8292b4a5de3d5bc553a3e463b1f93ec0c) ### [haproxy-router](https://github.com/openshift/router/tree/431a6e667025931c68b4f747a224af29edf356f6) * [OCPBUGS-21117](https://issues.redhat.com/browse/OCPBUGS-21117): Bump golang.org/x/net to v0.17.0 to address CVE-2023-39325 [#531](https://github.com/openshift/router/pull/531) * [Full changelog](https://github.com/openshift/router/compare/057eae91f82fb3900fc3d18172b5e6e6ad2d59d8...431a6e667025931c68b4f747a224af29edf356f6) ### [hyperkube, pod](https://github.com/openshift/kubernetes/tree/03ee8988f028929587523bfa1914e4d36916217e) * [OCPBUGS-29663](https://issues.redhat.com/browse/OCPBUGS-29663): Update to kubernetes 1.26.14 [#1889](https://github.com/openshift/kubernetes/pull/1889) * [OCPBUGS-12210](https://issues.redhat.com/browse/OCPBUGS-12210): Prevent partially filled HPA behaviors from crashing kube-controller-manager [#1876](https://github.com/openshift/kubernetes/pull/1876) * [OCPBUGS-27370](https://issues.redhat.com/browse/OCPBUGS-27370): Update to kubernetes 1.26.13 [#1859](https://github.com/openshift/kubernetes/pull/1859) * [OCPBUGS-25814](https://issues.redhat.com/browse/OCPBUGS-25814): Fix device uncertain errors on reboot - 4.13 [#1831](https://github.com/openshift/kubernetes/pull/1831) * [OCPBUGS-25988](https://issues.redhat.com/browse/OCPBUGS-25988): Update to kubernetes 1.26.12 [#1839](https://github.com/openshift/kubernetes/pull/1839) * [OCPBUGS-25767](https://issues.redhat.com/browse/OCPBUGS-25767): legacy-cloud-providers: prevent index out-of-range in getNextUnitNumber [#1834](https://github.com/openshift/kubernetes/pull/1834) * [OCPBUGS-23521](https://issues.redhat.com/browse/OCPBUGS-23521): UPSTREAM: <carry>: support for both icsp and idms objects [#1798](https://github.com/openshift/kubernetes/pull/1798) * [OCPBUGS-23567](https://issues.redhat.com/browse/OCPBUGS-23567): Update to kubernetes 1.26.11 [#1809](https://github.com/openshift/kubernetes/pull/1809) * [OCPBUGS-18829](https://issues.redhat.com/browse/OCPBUGS-18829): cm: reorder setting of sched_load_balance for sandbox slice [#1696](https://github.com/openshift/kubernetes/pull/1696) * [OCPBUGS-23287](https://issues.redhat.com/browse/OCPBUGS-23287): UPSTREAM: 121881: Use golang library instead of mklink [#1802](https://github.com/openshift/kubernetes/pull/1802) * openshift-hack: Fix sporadic 141 errors in build-rpms [#1773](https://github.com/openshift/kubernetes/pull/1773) * [OCPBUGS-20114](https://issues.redhat.com/browse/OCPBUGS-20114): UPSTREAM: <carry>: Do not allow nodes to set forbidden openshift labels [#1746](https://github.com/openshift/kubernetes/pull/1746) * [OCPBUGS-21063](https://issues.redhat.com/browse/OCPBUGS-21063): [release-4.13] UPSTREAM: 121126: [1.26][CVE-2023-39325] .: bump golang.org/x/net to v0.17.0 [#1759](https://github.com/openshift/kubernetes/pull/1759) * [Full changelog](https://github.com/openshift/kubernetes/compare/07c0911cf67a7fb244e0aed4f28e44a92feccb2f...03ee8988f028929587523bfa1914e4d36916217e) ### [hypershift](https://github.com/openshift/hypershift/tree/1ef713f57c05135df9b141d29d9d0f8412eb7e58) * [HOSTEDCP-1146](https://issues.redhat.com/browse/HOSTEDCP-1146): cpo: use CPO spec container image if it is a sha256 reference [#3296](https://github.com/openshift/hypershift/pull/3296) * [OCPBUGS-22971](https://issues.redhat.com/browse/OCPBUGS-22971): Add konnectivity-proxy container to CNO [#3167](https://github.com/openshift/hypershift/pull/3167) * [OCPBUGS-23455](https://issues.redhat.com/browse/OCPBUGS-23455): Use the same etcd snapshot for all replicas during etcd restore [#3205](https://github.com/openshift/hypershift/pull/3205) * NO-JIRA: Red Hat Trusted App Pipeline purge hypershift-operator-release-413 [#3217](https://github.com/openshift/hypershift/pull/3217) * [Full changelog](https://github.com/openshift/hypershift/compare/2c52769df12895ea389c8e87c6175dc59aedd4d6...1ef713f57c05135df9b141d29d9d0f8412eb7e58) ### [ibm-cloud-controller-manager](https://github.com/openshift/cloud-provider-ibm/tree/b5bcaf9caa96561a32ec5e7b79ca41e173ecfe25) * [OCPBUGS-24999](https://issues.redhat.com/browse/OCPBUGS-24999): Add Snyk file to exclude vendor directory on scan [#66](https://github.com/openshift/cloud-provider-ibm/pull/66) * [OCPBUGS-21137](https://issues.redhat.com/browse/OCPBUGS-21137): Bump golang.org/x/net to v0.18.0 [#56](https://github.com/openshift/cloud-provider-ibm/pull/56) * [Full changelog](https://github.com/openshift/cloud-provider-ibm/compare/59edd923386b36f2cad99150b7fd11fb7bbb1688...b5bcaf9caa96561a32ec5e7b79ca41e173ecfe25) ### [ibm-vpc-block-csi-driver](https://github.com/openshift/ibm-vpc-block-csi-driver/tree/3e0eb20f7521c895c2d11ae683fd53adadaeffba) * [OCPBUGS-18143](https://issues.redhat.com/browse/OCPBUGS-18143): [IBM VPC] failed provisioning volume in proxy cluster [#47](https://github.com/openshift/ibm-vpc-block-csi-driver/pull/47) * [OCPBUGS-21230](https://issues.redhat.com/browse/OCPBUGS-21230): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#51](https://github.com/openshift/ibm-vpc-block-csi-driver/pull/51) * [Full changelog](https://github.com/openshift/ibm-vpc-block-csi-driver/compare/42b5c256657da2de184c3e5ec9c619131ed1cd57...3e0eb20f7521c895c2d11ae683fd53adadaeffba) ### [ibm-vpc-block-csi-driver-operator](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/tree/38c439da0b0ff924ad6b3d0af6461605a8b498ac) * [OCPBUGS-21319](https://issues.redhat.com/browse/OCPBUGS-21319): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#82](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/pull/82) * [OCPBUGS-18143](https://issues.redhat.com/browse/OCPBUGS-18143): [IBM VPC] failed provisioning volume in proxy cluster [#76](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/pull/76) * [Full changelog](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/compare/ce92007db2dfd6cd8b9b9c7cfcfaeec801e76097...38c439da0b0ff924ad6b3d0af6461605a8b498ac) ### [ibm-vpc-node-label-updater](https://github.com/openshift/ibm-vpc-node-label-updater/tree/7721a9e75b92bdd12ff9a05acc9274c0d0580aba) * [OCPBUGS-21432](https://issues.redhat.com/browse/OCPBUGS-21432): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#28](https://github.com/openshift/ibm-vpc-node-label-updater/pull/28) * [Full changelog](https://github.com/openshift/ibm-vpc-node-label-updater/compare/96ff048184ce4005bd8a4ae6ef1146ba0fa230ac...7721a9e75b92bdd12ff9a05acc9274c0d0580aba) ### [ibmcloud-cluster-api-controllers](https://github.com/openshift/cluster-api-provider-ibmcloud/tree/c4441f101083a8ffe01d4d6bb372a8b32a30a9a6) * [OCPBUGS-21418](https://issues.redhat.com/browse/OCPBUGS-21418): UPSTREAM: <carry>: bump golang.org/x/net to v0.18.0 [#66](https://github.com/openshift/cluster-api-provider-ibmcloud/pull/66) * [Full changelog](https://github.com/openshift/cluster-api-provider-ibmcloud/compare/d221afa4bee0d722a97f49c0212dfb7954f49b93...c4441f101083a8ffe01d4d6bb372a8b32a30a9a6) ### [insights-operator](https://github.com/openshift/insights-operator/tree/c2c598d6e76fd71cee71d8ed1015f06090c4ce1a) * [OCPBUGS-28157](https://issues.redhat.com/browse/OCPBUGS-28157): Add extra check in ids to bypass validations (#905) [#905](https://github.com/openshift/insights-operator/pull/905) * gather etcd_server_slow metrics (#902) (#909) [#902](https://github.com/openshift/insights-operator/pull/902) * [OCPBUGS-23962](https://issues.redhat.com/browse/OCPBUGS-23962): adds helm information gather (#868) (#883) [#868](https://github.com/openshift/insights-operator/pull/868) * [OCPBUGS-22958](https://issues.redhat.com/browse/OCPBUGS-22958): adds cluster storageclasses gather (#858) (#875) [#858](https://github.com/openshift/insights-operator/pull/858) * [OCPBUGS-22953](https://issues.redhat.com/browse/OCPBUGS-22953): create Prometheus rules programmatically according the… (#860) [#860](https://github.com/openshift/insights-operator/pull/860) * [OCPBUGS-22914](https://issues.redhat.com/browse/OCPBUGS-22914): remove username & password config options (#859) [#859](https://github.com/openshift/insights-operator/pull/859) * [OCPBUGS-20750](https://issues.redhat.com/browse/OCPBUGS-20750): update dependencies (#840) [#840](https://github.com/openshift/insights-operator/pull/840) * Add cherry-pick from 4.14 (#848) [#848](https://github.com/openshift/insights-operator/pull/848) * [Full changelog](https://github.com/openshift/insights-operator/compare/ba18a081c0e2bd04aea1d41ae132e2f5b113bfda...c2c598d6e76fd71cee71d8ed1015f06090c4ce1a) ### [ironic](https://github.com/openshift/ironic-image/tree/8d8034fa0d8bfa4b76f21695a1fbe91fc5947077) * [OCPBUGS-29190](https://issues.redhat.com/browse/OCPBUGS-29190): Fix Inspector iPXE config for IPv6 addresses [#453](https://github.com/openshift/ironic-image/pull/453) * [OCPBUGS-23978](https://issues.redhat.com/browse/OCPBUGS-23978): Ironic side of external_http_url (METAL-163) is not wired in correctly [#430](https://github.com/openshift/ironic-image/pull/430) * [OCPBUGS-23506](https://issues.redhat.com/browse/OCPBUGS-23506): Uplift eventlet version [#427](https://github.com/openshift/ironic-image/pull/427) * [OCPBUGS-23356](https://issues.redhat.com/browse/OCPBUGS-23356): Upgrade werkzeug dependency [#422](https://github.com/openshift/ironic-image/pull/422) * [OCPBUGS-19078](https://issues.redhat.com/browse/OCPBUGS-19078): Handle Eject DVD 4.13 [#416](https://github.com/openshift/ironic-image/pull/416) * [OCPBUGS-23072](https://issues.redhat.com/browse/OCPBUGS-23072): Use bash process substitution instead of pipe [#413](https://github.com/openshift/ironic-image/pull/413) * [Full changelog](https://github.com/openshift/ironic-image/compare/fc1cca95711797767336878bfb9e2e4b9801ecfa...8d8034fa0d8bfa4b76f21695a1fbe91fc5947077) ### [ironic-agent](https://github.com/openshift/ironic-agent-image/tree/833caa2c4b712381c3f847ba928dcb34d0f875a1) * [OCPBUGS-29725](https://issues.redhat.com/browse/OCPBUGS-29725): Always add ignition to set hostname on /etc/hostname [#111](https://github.com/openshift/ironic-agent-image/pull/111) * [Full changelog](https://github.com/openshift/ironic-agent-image/compare/508e61245eb34d1f83771b1522021ffcde59fecc...833caa2c4b712381c3f847ba928dcb34d0f875a1) ### [k8s-prometheus-adapter](https://github.com/openshift/k8s-prometheus-adapter/tree/0fce7c7c97d56ba0a0ae4c6a2ba32e559b8a03d7) * [OCPBUGS-21457](https://issues.redhat.com/browse/OCPBUGS-21457): upgrade golang.org/x/net to 0.17.0 to address CVE [#90](https://github.com/openshift/k8s-prometheus-adapter/pull/90) * [OCPBUGS-20405](https://issues.redhat.com/browse/OCPBUGS-20405): limit number of simultaneous client requests [#78](https://github.com/openshift/k8s-prometheus-adapter/pull/78) * [Full changelog](https://github.com/openshift/k8s-prometheus-adapter/compare/b2e401059a11d23923adba51eeb82cbd5d75b7fc...0fce7c7c97d56ba0a0ae4c6a2ba32e559b8a03d7) ### [keepalived-ipfailover](https://github.com/openshift/images/tree/1a14e5c9896976b43767ab325a6fe35527a514a5) * [OCPBUGS-6236](https://issues.redhat.com/browse/OCPBUGS-6236): Updating openshift-enterprise-egress-router images to be consistent with ART [#121](https://github.com/openshift/images/pull/121) * [Full changelog](https://github.com/openshift/images/compare/04659348dbad0cd9b56596d5977d2934fa01d509...1a14e5c9896976b43767ab325a6fe35527a514a5) ### [kube-proxy, sdn](https://github.com/openshift/sdn/tree/569ea1116cb348a31ea757b0a76d21de6bc8bcba) * [OCPBUGS-20771](https://issues.redhat.com/browse/OCPBUGS-20771): update x/net to v0.17.0 [#590](https://github.com/openshift/sdn/pull/590) * [OCPBUGS-22932](https://issues.redhat.com/browse/OCPBUGS-22932): Change the permission of 80-openshift-network.conf to 600 [#582](https://github.com/openshift/sdn/pull/582) * [OCPBUGS-14504](https://issues.redhat.com/browse/OCPBUGS-14504): Use the ovsver build arg to infer the openvswitch short version number [#572](https://github.com/openshift/sdn/pull/572) * [Full changelog](https://github.com/openshift/sdn/compare/12a5bcfe56550165a550230d016f3a954b18ddbe...569ea1116cb348a31ea757b0a76d21de6bc8bcba) ### [kube-rbac-proxy](https://github.com/openshift/kube-rbac-proxy/tree/ae32bfa0f11ae2854339ab9af83c44ee1c04fe31) * [OCPBUGS-20702](https://issues.redhat.com/browse/OCPBUGS-20702): v0.15.0 downstream release 4.13 [#84](https://github.com/openshift/kube-rbac-proxy/pull/84) * [Full changelog](https://github.com/openshift/kube-rbac-proxy/compare/f1205e66bf34421046288bc74aed0d69b8434206...ae32bfa0f11ae2854339ab9af83c44ee1c04fe31) ### [kube-state-metrics](https://github.com/openshift/kube-state-metrics/tree/fd791df54d7271c1611090505509a03454168689) * [OCPBUGS-20778](https://issues.redhat.com/browse/OCPBUGS-20778): bump x/net to v0.17.0 [#102](https://github.com/openshift/kube-state-metrics/pull/102) * [Full changelog](https://github.com/openshift/kube-state-metrics/compare/4b9698489404f06195ba8a4646d58d67e13501d4...fd791df54d7271c1611090505509a03454168689) ### [machine-api-operator](https://github.com/openshift/machine-api-operator/tree/c2a173259a7f9621de82b6a40c80129667a49093) * [OCPBUGS-25165](https://issues.redhat.com/browse/OCPBUGS-25165): Add Snyk file to exclude vendor directory on scan [#1194](https://github.com/openshift/machine-api-operator/pull/1194) * [OCPBUGS-24277](https://issues.redhat.com/browse/OCPBUGS-24277): Update reference URL [#1188](https://github.com/openshift/machine-api-operator/pull/1188) * [OCPBUGS-24277](https://issues.redhat.com/browse/OCPBUGS-24277): Use docs URL instead of KCS article [#1181](https://github.com/openshift/machine-api-operator/pull/1181) * [OCPBUGS-21513](https://issues.redhat.com/browse/OCPBUGS-21513): Bump golang.org/x/net to v0.18.0 [#1175](https://github.com/openshift/machine-api-operator/pull/1175) * [Full changelog](https://github.com/openshift/machine-api-operator/compare/370fdaa43c6964e2af6abbde2bf37789de509bec...c2a173259a7f9621de82b6a40c80129667a49093) ### [machine-config-operator](https://github.com/openshift/machine-config-operator/tree/88140227ee7d79c77092efd92b5a4363971333e2) * [OCPBUGS-29721](https://issues.redhat.com/browse/OCPBUGS-29721): Add existing kubeletconfig/ctrcfg mc-name-suffix annotation [#4206](https://github.com/openshift/machine-config-operator/pull/4206) * [OCPBUGS-30285](https://issues.redhat.com/browse/OCPBUGS-30285): set nodeStatusReportFrequency [#4243](https://github.com/openshift/machine-config-operator/pull/4243) * [OCPBUGS-28740](https://issues.redhat.com/browse/OCPBUGS-28740): crio: drop automatic image cleanup on upgrades [#4154](https://github.com/openshift/machine-config-operator/pull/4154) * [OCPBUGS-29151](https://issues.redhat.com/browse/OCPBUGS-29151): fix nodeStatusUpdateFrequency [#4170](https://github.com/openshift/machine-config-operator/pull/4170) * [OCPBUGS-24661](https://issues.redhat.com/browse/OCPBUGS-24661): daemon: Add support for new nmstate logic [#4036](https://github.com/openshift/machine-config-operator/pull/4036) * [OCPBUGS-27816](https://issues.redhat.com/browse/OCPBUGS-27816): use *resource.Quantity to not automatically set 0 [#4141](https://github.com/openshift/machine-config-operator/pull/4141) * [OCPBUGS-22272](https://issues.redhat.com/browse/OCPBUGS-22272), [OCPBUGS-27172](https://issues.redhat.com/browse/OCPBUGS-27172): kubelet: fix kubelet labels [#4120](https://github.com/openshift/machine-config-operator/pull/4120) * [OCPBUGS-27096](https://issues.redhat.com/browse/OCPBUGS-27096): Azure Run ovs-configuration.service before dnsmasq.service [#4115](https://github.com/openshift/machine-config-operator/pull/4115) * [OCPBUGS-19658](https://issues.redhat.com/browse/OCPBUGS-19658): After dual-stack conversion reconcile IPFamilies [#3935](https://github.com/openshift/machine-config-operator/pull/3935) * [OCPBUGS-23468](https://issues.redhat.com/browse/OCPBUGS-23468): support icsp and idms objects [#4027](https://github.com/openshift/machine-config-operator/pull/4027) * [OCPBUGS-23536](https://issues.redhat.com/browse/OCPBUGS-23536): Introduce kubelet-dependencies.target and firstboot-osupdate.target [#4043](https://github.com/openshift/machine-config-operator/pull/4043) * [OCPBUGS-21052](https://issues.redhat.com/browse/OCPBUGS-21052): Update library-go and kube deps to latest version [#4011](https://github.com/openshift/machine-config-operator/pull/4011) * [OCPBUGS-22205](https://issues.redhat.com/browse/OCPBUGS-22205): Consider ingress VIPs when selecting node IP [#3991](https://github.com/openshift/machine-config-operator/pull/3991) * [OCPBUGS-18031](https://issues.redhat.com/browse/OCPBUGS-18031): on-prem: run resolv-prepender on NM reapply event [#3880](https://github.com/openshift/machine-config-operator/pull/3880) * [OCPBUGS-22412](https://issues.redhat.com/browse/OCPBUGS-22412): bootstrap_test: always set APIVersion and Kind for DNS [#4002](https://github.com/openshift/machine-config-operator/pull/4002) * [OCPBUGS-21721](https://issues.redhat.com/browse/OCPBUGS-21721): install/0000_90_machine-config-operator_90_deletion: Drop this file [#3983](https://github.com/openshift/machine-config-operator/pull/3983) * [OCPBUGS-20333](https://issues.redhat.com/browse/OCPBUGS-20333): resolv-prepender: avoid pulling baremetalRuntimeCfgImage again if it … [#3962](https://github.com/openshift/machine-config-operator/pull/3962) * [Full changelog](https://github.com/openshift/machine-config-operator/compare/1f7cb3207efa440e769dc71aa739597b1e67051e...88140227ee7d79c77092efd92b5a4363971333e2) ### [machine-image-customization-controller](https://github.com/openshift/image-customization-controller/tree/34a4abe6ec47fff69476695eccffdb27fe23780c) * [OCPBUGS-27089](https://issues.redhat.com/browse/OCPBUGS-27089): configurable ironic agent vlan creation [#117](https://github.com/openshift/image-customization-controller/pull/117) * [OCPBUGS-21549](https://issues.redhat.com/browse/OCPBUGS-21549): Uplift x/net to v0.17.0 [#105](https://github.com/openshift/image-customization-controller/pull/105) * [Full changelog](https://github.com/openshift/image-customization-controller/compare/0f4119d19349077d30ad108a9e611eed7205d14a...34a4abe6ec47fff69476695eccffdb27fe23780c) ### [multus-admission-controller](https://github.com/openshift/multus-admission-controller/tree/9b0656af8316420bf05a7d3a0969feded615ed64) * [OCPBUGS-21353](https://issues.redhat.com/browse/OCPBUGS-21353): Update go.mod for CVE-2023-39325 [Release-4.13] [#72](https://github.com/openshift/multus-admission-controller/pull/72) * [Full changelog](https://github.com/openshift/multus-admission-controller/compare/f76d674edb07d7006f04748338c1013499c0e7ab...9b0656af8316420bf05a7d3a0969feded615ed64) ### [multus-cni](https://github.com/openshift/multus-cni/tree/906067fdbf94800efb89895b38ae037947a12b46) * [OCPBUGS-21076](https://issues.redhat.com/browse/OCPBUGS-21076): Update go.mod for CVE-2023-39325 [Release-4.13] [#195](https://github.com/openshift/multus-cni/pull/195) * [Full changelog](https://github.com/openshift/multus-cni/compare/bb616eff56bf0b71ad85009360231f4686a6e4a9...906067fdbf94800efb89895b38ae037947a12b46) ### [multus-networkpolicy](https://github.com/openshift/multus-networkpolicy/tree/7176ab75edaf6328bb1da06ba55378815271d218) * [OCPBUGS-21438](https://issues.redhat.com/browse/OCPBUGS-21438): Update go.mod for CVE-2023-39325 (#35) [#35](https://github.com/openshift/multus-networkpolicy/pull/35) * [Full changelog](https://github.com/openshift/multus-networkpolicy/compare/7b99c194d5d2b092a64dc7b8673ef96a399cc7a8...7176ab75edaf6328bb1da06ba55378815271d218) ### [multus-whereabouts-ipam-cni](https://github.com/openshift/whereabouts-cni/tree/3f39bc89d13222d2209665323b6c47fc58fcdc22) * [OCPBUGS-27958](https://issues.redhat.com/browse/OCPBUGS-27958): Enable reconciler configuration [#241](https://github.com/openshift/whereabouts-cni/pull/241) * [OCPBUGS-27367](https://issues.redhat.com/browse/OCPBUGS-27367): [release-4.13] Backport fix assignment [#236](https://github.com/openshift/whereabouts-cni/pull/236) * [OCPBUGS-21512](https://issues.redhat.com/browse/OCPBUGS-21512): update golang.org/x/net to v0.17.0 [#208](https://github.com/openshift/whereabouts-cni/pull/208) * [Full changelog](https://github.com/openshift/whereabouts-cni/compare/7ea40205ffef4c3e047153f4655444245c2792d3...3f39bc89d13222d2209665323b6c47fc58fcdc22) ### [network-metrics-daemon](https://github.com/openshift/network-metrics-daemon/tree/3ef81a5c468171f22d626c544fd7f02adc156ceb) * Added METRIC_TEST_IMAGE var (#90) [#90](https://github.com/openshift/network-metrics-daemon/pull/90) * Update the k8s dependencies to 1.26.10 (#83) [#83](https://github.com/openshift/network-metrics-daemon/pull/83) * [Full changelog](https://github.com/openshift/network-metrics-daemon/compare/e72c8ad1581132817c09e23295f55425a14a5c58...3ef81a5c468171f22d626c544fd7f02adc156ceb) ### [nutanix-machine-controllers](https://github.com/openshift/machine-api-provider-nutanix/tree/105c515996ed0856eca89e75b166e70331d95856) * [OCPBUGS-24563](https://issues.redhat.com/browse/OCPBUGS-24563): Reduce metrics cardinality [#59](https://github.com/openshift/machine-api-provider-nutanix/pull/59) * [OCPBUGS-25459](https://issues.redhat.com/browse/OCPBUGS-25459): Fix CI by running tests natively by default [#60](https://github.com/openshift/machine-api-provider-nutanix/pull/60) * [Full changelog](https://github.com/openshift/machine-api-provider-nutanix/compare/be43191e5b20c7d6a5755a39a22d31e7734b241a...105c515996ed0856eca89e75b166e70331d95856) ### [oauth-apiserver](https://github.com/openshift/oauth-apiserver/tree/89d9537c1d247f08990eb085a80fd5f27f84efee) * [OCPBUGS-28674](https://issues.redhat.com/browse/OCPBUGS-28674): Fix HTTP/2 deps for release-4.13 [#102](https://github.com/openshift/oauth-apiserver/pull/102) * [Full changelog](https://github.com/openshift/oauth-apiserver/compare/41c2dfea104b3c686a00b068654843b48b4db53f...89d9537c1d247f08990eb085a80fd5f27f84efee) ### [oauth-server](https://github.com/openshift/oauth-server/tree/eb54be281d8f215a6eaa6e10ed1b303c7d064bac) * [AUTH-443](https://issues.redhat.com/browse/AUTH-443): update osin to latest version [#139](https://github.com/openshift/oauth-server/pull/139) * [Full changelog](https://github.com/openshift/oauth-server/compare/b841149f2ec0c1ffcb0393e6f70b1e4547f3b18e...eb54be281d8f215a6eaa6e10ed1b303c7d064bac) ### [oc-mirror](https://github.com/openshift/oc-mirror/tree/02f5c90659ba54c0adcb2d175e89864e323263de) * [OCPBUGS-385](https://issues.redhat.com/browse/OCPBUGS-385): Capability to override default channel (#749) (#791) [#749](https://github.com/openshift/oc-mirror/pull/749) * [OCPBUGS-19429](https://issues.redhat.com/browse/OCPBUGS-19429): Fix cross EUS channel upgrade path calculation (#775) [#775](https://github.com/openshift/oc-mirror/pull/775) * [OCPBUGS-21460](https://issues.redhat.com/browse/OCPBUGS-21460): Fix CVE-2023-44487 and CVE-2023-39325 (#714) [#714](https://github.com/openshift/oc-mirror/pull/714) * [Full changelog](https://github.com/openshift/oc-mirror/compare/3742681e417aee146fe258cf779b6cdfae8054a3...02f5c90659ba54c0adcb2d175e89864e323263de) ### [olm-rukpak](https://github.com/openshift/operator-framework-rukpak/tree/af471187e8e0623d2591feb64192a2ccacf5e270) * : OCPBUGS-27594,OCPBUGS-27679: Update go-git to v5.11.0 [#75](https://github.com/openshift/operator-framework-rukpak/pull/75) * [OCPBUGS-23403](https://issues.redhat.com/browse/OCPBUGS-23403): [release-4.13] Address http2 vulnerability [#58](https://github.com/openshift/operator-framework-rukpak/pull/58) * [OCPBUGS-21363](https://issues.redhat.com/browse/OCPBUGS-21363): [release-4.13] Bump golang.org/x/net to v0.17.0 [#40](https://github.com/openshift/operator-framework-rukpak/pull/40) * UPSTREAM: <carry>: add downstream owners [#42](https://github.com/openshift/operator-framework-rukpak/pull/42) * [Full changelog](https://github.com/openshift/operator-framework-rukpak/compare/66b3e551fc2730beb4c46d478166b38766c5f346...af471187e8e0623d2591feb64192a2ccacf5e270) ### [openshift-apiserver](https://github.com/openshift/openshift-apiserver/tree/6c0733082d6ff258dc8787ef2e84c1ceb51a0655) * : OCPBUGS-21449: Enable HTTP/2 CVE mitigation [#398](https://github.com/openshift/openshift-apiserver/pull/398) * [Full changelog](https://github.com/openshift/openshift-apiserver/compare/0b82768216c0c0ffb171457fce71b3806c586e7c...6c0733082d6ff258dc8787ef2e84c1ceb51a0655) ### [openshift-state-metrics](https://github.com/openshift/openshift-state-metrics/tree/9be421f0c013c7f134c1d7cfe1c0ee2f2ae8eaf6) * [OCPBUGS-20723](https://issues.redhat.com/browse/OCPBUGS-20723): bump `x/net` to v0.17.0 [#108](https://github.com/openshift/openshift-state-metrics/pull/108) * [Full changelog](https://github.com/openshift/openshift-state-metrics/compare/7beb8807e2c0092b5e580a29903ff060140d8ff0...9be421f0c013c7f134c1d7cfe1c0ee2f2ae8eaf6) ### [openstack-cinder-csi-driver-operator](https://github.com/openshift/openstack-cinder-csi-driver-operator/tree/b50a649be8b691a6081487330da17e55d242a2e5) * [OCPBUGS-21565](https://issues.redhat.com/browse/OCPBUGS-21565): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#136](https://github.com/openshift/openstack-cinder-csi-driver-operator/pull/136) * [Full changelog](https://github.com/openshift/openstack-cinder-csi-driver-operator/compare/90ee04bcfbfc0eb6173bc9fbea8c9f87ec1dea7d...b50a649be8b691a6081487330da17e55d242a2e5) ### [operator-lifecycle-manager, operator-registry](https://github.com/openshift/operator-framework-olm/tree/4cc5232d665151b2ee1c75df3061dfa11645fbbc) * [OCPBUGS-27564](https://issues.redhat.com/browse/OCPBUGS-27564), [OCPBUGS-27569](https://issues.redhat.com/browse/OCPBUGS-27569), [OCPBUGS-27649](https://issues.redhat.com/browse/OCPBUGS-27649), [OCPBUGS-27654](https://issues.redhat.com/browse/OCPBUGS-27654): bump go-git/v5 to 5.11.0 [#682](https://github.com/openshift/operator-framework-olm/pull/682) * [OCPBUGS-28228](https://issues.redhat.com/browse/OCPBUGS-28228): Registry Pod Controller Flag [#672](https://github.com/openshift/operator-framework-olm/pull/672) * [OCPBUGS-27891](https://issues.redhat.com/browse/OCPBUGS-27891): [CARRY] SSC RBAC [#669](https://github.com/openshift/operator-framework-olm/pull/669) * [OCPBUGS-8653](https://issues.redhat.com/browse/OCPBUGS-8653): bump golang-migrate to v4.16.1 (#1107) [#649](https://github.com/openshift/operator-framework-olm/pull/649) * [OCPBUGS-20815](https://issues.redhat.com/browse/OCPBUGS-20815): [release-4.13] fix apiserver vulnerability [#616](https://github.com/openshift/operator-framework-olm/pull/616) * [OCPBUGS-22133](https://issues.redhat.com/browse/OCPBUGS-22133): [release-4.13] Bump golang.org/x/net to v0.17.0 [#589](https://github.com/openshift/operator-framework-olm/pull/589) * [Full changelog](https://github.com/openshift/operator-framework-olm/compare/9957ffd6be55ffadf08c107191fa459e03af5f26...4cc5232d665151b2ee1c75df3061dfa11645fbbc) ### [operator-marketplace](https://github.com/operator-framework/operator-marketplace/tree/867e7ed80fdbc6f5bb88f1589da740d9bd1d5721) * [OCPBUGS-20977](https://issues.redhat.com/browse/OCPBUGS-20977): [release-4.13] bump golang.org/x/net to 0.17.0 [#549](https://github.com/operator-framework/operator-marketplace/pull/549) * [Full changelog](https://github.com/operator-framework/operator-marketplace/compare/3a424b991b6505699f53badce9085d4398575f68...867e7ed80fdbc6f5bb88f1589da740d9bd1d5721) ### [ovirt-csi-driver](https://github.com/openshift/ovirt-csi-driver/tree/54958deb4998e08696af0abe3585486a6b5b6800) * [OCPBUGS-23155](https://issues.redhat.com/browse/OCPBUGS-23155): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#130](https://github.com/openshift/ovirt-csi-driver/pull/130) * [Full changelog](https://github.com/openshift/ovirt-csi-driver/compare/f21b470f4927f97eca93a0a390cffccd7d724043...54958deb4998e08696af0abe3585486a6b5b6800) ### [ovirt-csi-driver-operator](https://github.com/openshift/ovirt-csi-driver-operator/tree/b293972fe2c5eef4262130de621e75e5d0c37d8e) * [OCPBUGS-23241](https://issues.redhat.com/browse/OCPBUGS-23241): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#127](https://github.com/openshift/ovirt-csi-driver-operator/pull/127) * [Full changelog](https://github.com/openshift/ovirt-csi-driver-operator/compare/aca579dfc9aa1921849f9573f5179fcb2bf89f28...b293972fe2c5eef4262130de621e75e5d0c37d8e) ### [ovn-kubernetes-microshift-rhel-9, ovn-kubernetes-rhel-9](https://github.com/openshift/ovn-kubernetes/tree/9f1ac2c23d6bb19518dc440ad1dae74b65e98abe) * [OCPBUGS-29851](https://issues.redhat.com/browse/OCPBUGS-29851): Egress IP, Services: use all node IP addresses [#2090](https://github.com/openshift/ovn-kubernetes/pull/2090) * [OCPBUGS-28630](https://issues.redhat.com/browse/OCPBUGS-28630): Synchronize node primary address update [#2036](https://github.com/openshift/ovn-kubernetes/pull/2036) * [OCPBUGS-25611](https://issues.redhat.com/browse/OCPBUGS-25611): Avoid panic due to stale ACLs with 1013 priority [#1987](https://github.com/openshift/ovn-kubernetes/pull/1987) * [OCPBUGS-27257](https://issues.redhat.com/browse/OCPBUGS-27257): Ensure session affinity cleanup on backend removal [#2022](https://github.com/openshift/ovn-kubernetes/pull/2022) * [OCPBUGS-27736](https://issues.redhat.com/browse/OCPBUGS-27736): CARRY: Updates owners and adds Surya [#2024](https://github.com/openshift/ovn-kubernetes/pull/2024) * [OCPBUGS-24419](https://issues.redhat.com/browse/OCPBUGS-24419): OVNK/GW: Ignore headless services in syncServices [#1971](https://github.com/openshift/ovn-kubernetes/pull/1971) * [OCPBUGS-23258](https://issues.redhat.com/browse/OCPBUGS-23258): Update leaderelection config to allow retries [#1992](https://github.com/openshift/ovn-kubernetes/pull/1992) * [OCPBUGS-26242](https://issues.redhat.com/browse/OCPBUGS-26242): Fix Egress IP Deletion Handler to Prevent OVN Policy Leaks [#2011](https://github.com/openshift/ovn-kubernetes/pull/2011) * [OCPBUGS-25923](https://issues.redhat.com/browse/OCPBUGS-25923): Forward ICMP packets to OVN loadbalancer [#2004](https://github.com/openshift/ovn-kubernetes/pull/2004) * [OCPBUGS-25224](https://issues.redhat.com/browse/OCPBUGS-25224): [release-4.13] fixes MTU configuration on gateway router [#1988](https://github.com/openshift/ovn-kubernetes/pull/1988) * [OCPBUGS-14799](https://issues.redhat.com/browse/OCPBUGS-14799): Updating endpoints when using allocateLBNP=0, lgw mode fails [#1940](https://github.com/openshift/ovn-kubernetes/pull/1940) * [OCPBUGS-25095](https://issues.redhat.com/browse/OCPBUGS-25095): Fragment oversized reply packets in LGW mode [#1983](https://github.com/openshift/ovn-kubernetes/pull/1983) * [OCPBUGS-24391](https://issues.redhat.com/browse/OCPBUGS-24391): Limit OVN-Kubernetes RBAC permissions [#1950](https://github.com/openshift/ovn-kubernetes/pull/1950) * [OCPBUGS-23014](https://issues.redhat.com/browse/OCPBUGS-23014): Netpol retryFramework cleanup [#1957](https://github.com/openshift/ovn-kubernetes/pull/1957) * [OCPBUGS-24263](https://issues.redhat.com/browse/OCPBUGS-24263): Bump OVN to 23.06.1-39.el9fdp [#1966](https://github.com/openshift/ovn-kubernetes/pull/1966) * [OCPBUGS-14314](https://issues.redhat.com/browse/OCPBUGS-14314): Fix compilation error in e2e.go tests due to missing int32 parameter [#1682](https://github.com/openshift/ovn-kubernetes/pull/1682) * [OCPBUGS-20047](https://issues.redhat.com/browse/OCPBUGS-20047): Adjust python ssl library dependency check [#1924](https://github.com/openshift/ovn-kubernetes/pull/1924) * [OCPBUGS-18976](https://issues.redhat.com/browse/OCPBUGS-18976): Update bridge flow cache when the host address changes [#1873](https://github.com/openshift/ovn-kubernetes/pull/1873) * [Full changelog](https://github.com/openshift/ovn-kubernetes/compare/5e3199edf515e38a0b5ce774f0a3add9976a56d0...9f1ac2c23d6bb19518dc440ad1dae74b65e98abe) ### [powervs-block-csi-driver](https://github.com/openshift/ibm-powervs-block-csi-driver/tree/530f646b86f1ba898f534900eb463ae957a1b89e) * [OCPBUGS-24728](https://issues.redhat.com/browse/OCPBUGS-24728): synk: ignore vendor dir [#61](https://github.com/openshift/ibm-powervs-block-csi-driver/pull/61) * [OCPBUGS-21089](https://issues.redhat.com/browse/OCPBUGS-21089): CVE-2023-39325 - Update net dependencies - 4.13 [#52](https://github.com/openshift/ibm-powervs-block-csi-driver/pull/52) * Update OWNERS add yussufsh [#54](https://github.com/openshift/ibm-powervs-block-csi-driver/pull/54) * [Full changelog](https://github.com/openshift/ibm-powervs-block-csi-driver/compare/26d166e8f7d1f33eff1efd7ccab92a27a188f431...530f646b86f1ba898f534900eb463ae957a1b89e) ### [powervs-block-csi-driver-operator](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/tree/e70c980e2561788b710d710efc3e09974ad7374c) * [OCPBUGS-25716](https://issues.redhat.com/browse/OCPBUGS-25716): snyk: ignore vendor dir [#61](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/pull/61) * [OCPBUGS-21186](https://issues.redhat.com/browse/OCPBUGS-21186): CVE-2023-39325 - Update net dependencies - 4.13 [#41](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/pull/41) * Update OWNERS add yussufsh [#45](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/pull/45) * [Full changelog](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/compare/2d8e82b25c39fd0617632ae32fec070b7c5f8f21...e70c980e2561788b710d710efc3e09974ad7374c) ### [powervs-cloud-controller-manager](https://github.com/openshift/cloud-provider-powervs/tree/de68def0c918a05ad4bf32cc0470a7931d661c27) * [OCPBUGS-24731](https://issues.redhat.com/browse/OCPBUGS-24731): UPSTREAM: <carry>: snyk code scan exclude vendor directory [#53](https://github.com/openshift/cloud-provider-powervs/pull/53) * [OCPBUGS-21280](https://issues.redhat.com/browse/OCPBUGS-21280): CVE-2023-39325 - Update net dependencies - 4.13 [#46](https://github.com/openshift/cloud-provider-powervs/pull/46) * [Full changelog](https://github.com/openshift/cloud-provider-powervs/compare/130365622eb0c59e102049529695c8326d616213...de68def0c918a05ad4bf32cc0470a7931d661c27) ### [powervs-machine-controllers](https://github.com/openshift/machine-api-provider-powervs/tree/8df68995ce00d69460baac9901f81015d9f1b55f) * [OCPBUGS-24563](https://issues.redhat.com/browse/OCPBUGS-24563): Reduce metrics cardinality [#69](https://github.com/openshift/machine-api-provider-powervs/pull/69) * [OCPBUGS-24741](https://issues.redhat.com/browse/OCPBUGS-24741): snyk code scan exclude vendor directory [#64](https://github.com/openshift/machine-api-provider-powervs/pull/64) * [OCPBUGS-21880](https://issues.redhat.com/browse/OCPBUGS-21880): CVE-2023-39325 - Bump golang.org/x/net to v0.17.0 - 4.13 [#55](https://github.com/openshift/machine-api-provider-powervs/pull/55) * [Full changelog](https://github.com/openshift/machine-api-provider-powervs/compare/bf49c5c1b07137baa766b4d78b9e9c2650ef59ad...8df68995ce00d69460baac9901f81015d9f1b55f) ### [prometheus](https://github.com/openshift/prometheus/tree/72886096272245e064297c480b24ac4895230c89) * [OCPBUGS-26423](https://issues.redhat.com/browse/OCPBUGS-26423): Add Exemplars support for all time series [#191](https://github.com/openshift/prometheus/pull/191) * [OCPBUGS-21240](https://issues.redhat.com/browse/OCPBUGS-21240): update golang.org/x/net to v0.17.0 [4.13] [#174](https://github.com/openshift/prometheus/pull/174) * [Full changelog](https://github.com/openshift/prometheus/compare/8279148fd0d8b2aa2a1613a2e9810aea80f487df...72886096272245e064297c480b24ac4895230c89) ### [prometheus-alertmanager](https://github.com/openshift/prometheus-alertmanager/tree/df2f11e2ddc206ad1924ed766b4a394d84c9236f) * [OCPBUGS-21043](https://issues.redhat.com/browse/OCPBUGS-21043): Bump golang.org/x/net to v0.17.0 [#81](https://github.com/openshift/prometheus-alertmanager/pull/81) * [Full changelog](https://github.com/openshift/prometheus-alertmanager/compare/f44d574d8e170d6788cfbf2bdbc866d3e1fc1054...df2f11e2ddc206ad1924ed766b4a394d84c9236f) ### [prometheus-config-reloader, prometheus-operator, prometheus-operator-admission-webhook](https://github.com/openshift/prometheus-operator/tree/30fdccd139b2c63a9207bd30509aec8ddec7ff5d) * [OCPBUGS-20861](https://issues.redhat.com/browse/OCPBUGS-20861): Bump golang.org/x/net to v0.17.0 [#248](https://github.com/openshift/prometheus-operator/pull/248) * [Full changelog](https://github.com/openshift/prometheus-operator/compare/95a117826360e23e092be5bbee2da8dbcf44f17a...30fdccd139b2c63a9207bd30509aec8ddec7ff5d) ### [prometheus-node-exporter](https://github.com/openshift/node_exporter/tree/59d699cac664bfbfe83ef6a1615e34e062fd283d) * [OCPBUGS-21143](https://issues.redhat.com/browse/OCPBUGS-21143): upgrade golang.org/x/net to v0.17.0 [#135](https://github.com/openshift/node_exporter/pull/135) * [Full changelog](https://github.com/openshift/node_exporter/compare/5409afd036445411969ed074e681c73f2df36909...59d699cac664bfbfe83ef6a1615e34e062fd283d) ### [service-ca-operator](https://github.com/openshift/service-ca-operator/tree/dba00dc5b1874904542bed87f49974bf64be168a) * [OCPBUGS-28759](https://issues.redhat.com/browse/OCPBUGS-28759): Fix HTTP/2 (4.13) [#232](https://github.com/openshift/service-ca-operator/pull/232) * [Full changelog](https://github.com/openshift/service-ca-operator/compare/5984aac13df6c2f4440c67a1a14d32958bce9ec3...dba00dc5b1874904542bed87f49974bf64be168a) ### [telemeter](https://github.com/openshift/telemeter/tree/8c9a8a75108afb1ba7fe6398b004cbc8229cc645) * [OCPBUGS-21327](https://issues.redhat.com/browse/OCPBUGS-21327): [release-4.13]: Bump golang.org/x/net to v0.17.0 [#485](https://github.com/openshift/telemeter/pull/485) * [Full changelog](https://github.com/openshift/telemeter/compare/be81b43429dcbf70f6ca19a9360ba455c97a1639...8c9a8a75108afb1ba7fe6398b004cbc8229cc645) ### [tests](https://github.com/openshift/origin/tree/99b9d537a935e6446ba1fcd55e9a5b5ba090820a) * [AUTH-443](https://issues.redhat.com/browse/AUTH-443): Add oauth-server redirect URI validation e2e tests [#28396](https://github.com/openshift/origin/pull/28396) * [OCPBUGS-19378](https://issues.redhat.com/browse/OCPBUGS-19378): [4.13] backport etcd restore tests [#28267](https://github.com/openshift/origin/pull/28267) * Bug OCPBUGS-17469: Correct condition for rejecting connection [#28151](https://github.com/openshift/origin/pull/28151) * [OCPBUGS-20361](https://issues.redhat.com/browse/OCPBUGS-20361): Update image stream test to create a manifest list image by default [#28318](https://github.com/openshift/origin/pull/28318) * [Full changelog](https://github.com/openshift/origin/compare/62852a2a543c7e12a2bca8d7393b1e84eab700b9...99b9d537a935e6446ba1fcd55e9a5b5ba090820a) ### [thanos](https://github.com/openshift/thanos/tree/70fb57fb209e5aa491417fc421a97d417a5530bc) * [OCPBUGS-27206](https://issues.redhat.com/browse/OCPBUGS-27206): Bump otel/http to 0.44.0 [openshift-4.13.z] [#138](https://github.com/openshift/thanos/pull/138) * [OCPBUGS-21157](https://issues.redhat.com/browse/OCPBUGS-21157): Bump golang.org/x/net to v0.17.0 [#125](https://github.com/openshift/thanos/pull/125) * [Full changelog](https://github.com/openshift/thanos/compare/43238be385374e76ca6148a6780ddff9ebca3d11...70fb57fb209e5aa491417fc421a97d417a5530bc) ### [vsphere-cloud-controller-manager](https://github.com/openshift/cloud-provider-vsphere/tree/f56d57ba990f7f4ce1a6b1f9842331e9259c94f1) * [OCPBUGS-21506](https://issues.redhat.com/browse/OCPBUGS-21506): Bump golang.org/x/net to v0.18.0 [#55](https://github.com/openshift/cloud-provider-vsphere/pull/55) * [Full changelog](https://github.com/openshift/cloud-provider-vsphere/compare/0fe0c5c37d06893359f584e4b6f62d371703e9d1...f56d57ba990f7f4ce1a6b1f9842331e9259c94f1) ### [vsphere-cluster-api-controllers](https://github.com/openshift/cluster-api-provider-vsphere/tree/da63f2b930cdd6090904ee607319b40615b245f6) * [OCPBUGS-21556](https://issues.redhat.com/browse/OCPBUGS-21556): bump golang.org/x/net to v0.17.0 [#23](https://github.com/openshift/cluster-api-provider-vsphere/pull/23) * [Full changelog](https://github.com/openshift/cluster-api-provider-vsphere/compare/24e08ddf65fd387ea7c71e229b13e47d6cd3643f...da63f2b930cdd6090904ee607319b40615b245f6) ### [vsphere-csi-driver, vsphere-csi-driver-syncer](https://github.com/openshift/vmware-vsphere-csi-driver/tree/4d3036a6c7fe0c850bbadd942267426afe2ec16a) * [OCPBUGS-21561](https://issues.redhat.com/browse/OCPBUGS-21561): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#91](https://github.com/openshift/vmware-vsphere-csi-driver/pull/91) * [Full changelog](https://github.com/openshift/vmware-vsphere-csi-driver/compare/9079a510ebbe7bc0df6a06aae43b6dbada3adb32...4d3036a6c7fe0c850bbadd942267426afe2ec16a) ### [vsphere-csi-driver-operator](https://github.com/openshift/vmware-vsphere-csi-driver-operator/tree/a9e5036e12facff0193d563b752847191fc9dc91) * [OCPBUGS-21434](https://issues.redhat.com/browse/OCPBUGS-21434): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#174](https://github.com/openshift/vmware-vsphere-csi-driver-operator/pull/174) * [Full changelog](https://github.com/openshift/vmware-vsphere-csi-driver-operator/compare/1d88292198b5fe969b952532919fc595534af259...a9e5036e12facff0193d563b752847191fc9dc91) ### [vsphere-problem-detector](https://github.com/openshift/vsphere-problem-detector/tree/3ad7408fb53a9377d9f5b2cf5ae38570a9ec5c59) * [OCPBUGS-21577](https://issues.redhat.com/browse/OCPBUGS-21577): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#130](https://github.com/openshift/vsphere-problem-detector/pull/130) * [Full changelog](https://github.com/openshift/vsphere-problem-detector/compare/64f62bff177c6f2df6f106eacecc05e49e9a9828...3ad7408fb53a9377d9f5b2cf5ae38570a9ec5c59)