Merge pull request #96494 from kcarmichael08/rhacs-rn-4.7.5

kcarmichael08 · web-flow · commit 11a4e4570330 · 2025-07-22T14:49:48.000-04:00
New PR for #96076
diff --git a/modules/common-attributes.adoc b/modules/common-attributes.adoc
@@ -58,9 +58,10 @@ endif::[]
 :osp: Red{nbsp}Hat OpenShift
 :olm-first: Operator Lifecycle Manager (OLM)
 :olm: OLM
-:rhacs-version: 4.7.4
+:rhacs-version: 4.7.5
+:ga-date-475: 22 July 2025
 :ocp-supported-version: 4.12
-:ocp-latest-version: 4.17
+:ocp-latest-version: 4.19
 :plugin-acs-latest-version: 0.0.4
 :product-rosa: Red{nbsp}Hat OpenShift Service on AWS
 :product-rosa-short: ROSA
diff --git a/release_notes/47-release-notes.adoc b/release_notes/47-release-notes.adoc
@@ -20,6 +20,8 @@ toc::[]
 |`4.7.2` | 15 April 2025
 |`4.7.3` | 15 May 2025
 |`4.7.4` | 11 June 2025
+|`4.7.5` | {ga-date-475}
+
 
 |====
 
@@ -478,4 +480,27 @@ This release provides fixes for the following security issues:
 * zlib: Out-of-bounds pointer arithmetic in `inftrees.c` link:https://access.redhat.com/security/cve/CVE-2016-9840[(CVE-2016-9840)]
 * krb5: Kerberos RC4-HMAC-MD5 checksum vulnerability link:https://access.redhat.com/security/cve/CVE-2025-3576[(CVE-2025-3576)]
 
+[id="about-release-475_{context}"]
+== About release version 4.7.5
+
+*Release date*: {ga-date-475}
+
+This release of {product-title-short} 4.7 provides the following bug fixes:
+
+//ROX-29320
+* Before this update, Scanner V4 falsely claimed not to support RHEL 10, although it always supported RHEL 10. Scanner V4 now correctly indicates that it supports RHEL 10.
+
+//ROX-29755
+* Before this update, the failure of Sensor to call `stream.Recv()` caused gRPC flow control to block image reprocessing every 4 hours. With this update, the reprocessing loop includes a timeout for sending messages to Sensors, which resolves the issue and resumes the image reprocessing as expected.
+
+//ROX-29649
+* Before this update, you could observe excessive logging of telemetry collection status, resulting in log spam. With this update, the telemetry collection has been configured to not emit repeated logs continuously, which resolves the issue and significantly reduces the log volume.
+
+//ROX-29716
+* Before this update, a flaw in the signature verification algorithm caused valid signatures to be reported as invalid if they had a certain payload format. With this update, the enhanced robustness of the algorithm resolves the issue, and the system can now correctly assess the validity of signatures.
+
+This release provides fixes for the following security issues:
+
+* Flaw in `net/http` allowed request smuggling due to improper handling of bare line feed (LF) in chunked data (link:https://access.redhat.com/security/cve/cve-2025-22871[CVE-2025-22871])
+
 include::modules/image-versions.adoc[leveloffset=+1]
