RHDEVDOCS-4079 - Z Stream release notes: 5.2.12, 5.3.9, 5.4.3 w/ peer review feedback v5

Author: libander

logging/cluster-logging-release-notes.adoc

@@ -11,6 +11,8 @@ toc::[]
 .Logging Compatibility
 The {logging-title} is provided as an installable component, with a distinct release cycle from the core {product-title}. The link:https://access.redhat.com/support/policy/updates/openshift#logging[Red Hat OpenShift Container Platform Life Cycle Policy] outlines release compatibility.
 
+include::modules/cluster-logging-rn-5.4.3.adoc[leveloffset=+1]
+
 include::modules/cluster-logging-rn-5.4.2.adoc[leveloffset=+1]
 
 [id="cluster-logging-release-notes-5-4-1"]
@@ -110,6 +112,8 @@ include::modules/cluster-logging-loki-tech-preview.adoc[leveloffset=+2]
 * link:https://access.redhat.com/security/cve/CVE-2022-21698[CVE-2022-21698]
 ** link:https://bugzilla.redhat.com/show_bug.cgi?id=2045880[BZ-2045880]
 
+include::modules/cluster-logging-rn-5.3.9.adoc[leveloffset=+1]
+
 include::modules/cluster-logging-rn-5.3.8.adoc[leveloffset=+1]
 
 [id="cluster-logging-release-notes-5-3-7"]
@@ -528,6 +532,8 @@ In OpenShift Logging 5.3, the legacy configuration mechanism for log forwarding
 * link:https://www.redhat.com/security/data/cve/CVE-2021-42574.html[CVE-2021-42574]
 ====
 
+include::modules/cluster-logging-rn-5.2.12.adoc[leveloffset=+1]
+
 include::modules/cluster-logging-rn-5.2.11.adoc[leveloffset=+1]
 
 [id="cluster-logging-release-notes-5-2-10"]

modules/cluster-logging-rn-5.2.12.adoc

@@ -0,0 +1,30 @@
+//module included in cluster-logging-release-notes.adoc
+:_content-type: REFERENCE
+[id="cluster-logging-release-notes-5-2-12"]
+= Logging 5.2.12
+This release includes link:https://access.redhat.com/errata/RHBA-2022:5558[RHBA-2022:5558-OpenShift Logging Bug Fix Release 5.2.12].
+
+[id="openshift-logging-5-2-12-bug-fixes"]
+== Bug fixes
+None.
+
+[id="openshift-logging-5-2-12-CVEs"]
+== CVEs
+.Click to expand CVEs
+[%collapsible]
+====
+* link:https://access.redhat.com/security/cve/CVE-2020-28915[CVE-2020-28915]
+* link:https://access.redhat.com/security/cve/CVE-2021-40528[CVE-2021-40528]
+* link:https://access.redhat.com/security/cve/CVE-2022-1271[CVE-2022-1271]
+* link:https://access.redhat.com/security/cve/CVE-2022-1621[CVE-2022-1621]
+* link:https://access.redhat.com/security/cve/CVE-2022-1629[CVE-2022-1629]
+* link:https://access.redhat.com/security/cve/CVE-2022-22576[CVE-2022-22576]
+* link:https://access.redhat.com/security/cve/CVE-2022-25313[CVE-2022-25313]
+* link:https://access.redhat.com/security/cve/CVE-2022-25314[CVE-2022-25314]
+* link:https://access.redhat.com/security/cve/CVE-2022-26691[CVE-2022-26691]
+* link:https://access.redhat.com/security/cve/CVE-2022-27666[CVE-2022-27666]
+* link:https://access.redhat.com/security/cve/CVE-2022-27774[CVE-2022-27774]
+* link:https://access.redhat.com/security/cve/CVE-2022-27776[CVE-2022-27776]
+* link:https://access.redhat.com/security/cve/CVE-2022-27782[CVE-2022-27782]
+* link:https://access.redhat.com/security/cve/CVE-2022-29824[CVE-2022-29824]
+====

modules/cluster-logging-rn-5.3.9.adoc

@@ -0,0 +1,32 @@
+//module included in cluster-logging-release-notes.adoc
+:_content-type: REFERENCE
+[id="cluster-logging-release-notes-5-3-9"]
+= Logging 5.3.9
+This release includes link:https://access.redhat.com/errata/RHBA-2022:5557[RHBA-2022:5557-OpenShift Logging Bug Fix Release 5.3.9].
+
+[id="openshift-logging-5-3-9-bug-fixes"]
+== Bug fixes
+
+* Before this update, the logging collector included a path as a label for the metrics it produced. This path changed frequently and contributed to significant storage changes for the Prometheus server. With this update, the label has been dropped to resolve the issue and reduce storage consumption. (link:https://issues.redhat.com/browse/LOG-2682[LOG-2682]) 
+
+
+[id="openshift-logging-5-3-9-CVEs"]
+== CVEs
+.Click to expand CVEs
+[%collapsible]
+====
+* link:https://access.redhat.com/security/cve/CVE-2020-28915[CVE-2020-28915]
+* link:https://access.redhat.com/security/cve/CVE-2021-40528[CVE-2021-40528]
+* link:https://access.redhat.com/security/cve/CVE-2022-1271[CVE-2022-1271]
+* link:https://access.redhat.com/security/cve/CVE-2022-1621[CVE-2022-1621]
+* link:https://access.redhat.com/security/cve/CVE-2022-1629[CVE-2022-1629]
+* link:https://access.redhat.com/security/cve/CVE-2022-22576[CVE-2022-22576]
+* link:https://access.redhat.com/security/cve/CVE-2022-25313[CVE-2022-25313]
+* link:https://access.redhat.com/security/cve/CVE-2022-25314[CVE-2022-25314]
+* link:https://access.redhat.com/security/cve/CVE-2022-26691[CVE-2022-26691]
+* link:https://access.redhat.com/security/cve/CVE-2022-27666[CVE-2022-27666]
+* link:https://access.redhat.com/security/cve/CVE-2022-27774[CVE-2022-27774]
+* link:https://access.redhat.com/security/cve/CVE-2022-27776[CVE-2022-27776]
+* link:https://access.redhat.com/security/cve/CVE-2022-27782[CVE-2022-27782]
+* link:https://access.redhat.com/security/cve/CVE-2022-29824[CVE-2022-29824]
+====

modules/cluster-logging-rn-5.4.3.adoc

@@ -0,0 +1,44 @@
+//module included in cluster-logging-release-notes.adoc
+:_content-type: REFERENCE
+[id="cluster-logging-release-notes-5-4-3"]
+= Logging 5.4.3
+This release includes link:https://access.redhat.com/errata/RHBA-2022:5556[RHBA-2022:5556-OpenShift Logging Bug Fix Release 5.4.3].
+
+[id="openshift-logging-elasticsearch-dep"]
+== Elasticsearch Operator deprecation notice
+In {logging} 5.4.3 the Elasticsearch Operator is deprecated and is planned to be removed in a future release. Red Hat will provide bug fixes and support for this feature during the current release lifecycle, but this feature will no longer receive enhancements and will be removed. As an alternative to using the Elasticsearch Operator to manage the default log storage, you can use the Loki Operator.
+
+[id="openshift-logging-5-4-3-bug-fixes"]
+== Bug fixes
+* Before this update, the OpenShift Logging Dashboard showed the number of active primary shards instead of all active shards. With this update, the dashboard displays all active shards. (link:https://issues.redhat.com//browse/LOG-2781[LOG-2781])
+
+* Before this update, a bug in a library used by `elasticsearch-operator` contained a denial of service attack vulnerability. With this update, the library has been updated to a version that does not contain this vulnerability. (link:https://issues.redhat.com//browse/LOG-2816[LOG-2816])
+
+* Before this update, when configuring Vector to forward logs to Loki, it was not possible to set a custom bearer token or use the default token if Loki had TLS enabled. With this update, Vector can forward logs to Loki using tokens with TLS enabled. (link:https://issues.redhat.com//browse/https://issues.redhat.com//browse/LOG-2786[LOG-2786]
+
+* Before this update, the ElasticSearch Operator omitted the `referencePolicy` property of the `ImageStream` custom resource when selecting an `oauth-proxy` image. This omission caused the Kibana deployment to fail in specific environments. With this update, using `referencePolicy` resolves the issue, and the Operator can deploy Kibana successfully. (link:https://issues.redhat.com/browse/LOG-2791[LOG-2791])
+
+* Before this update, alerting rules for the `ClusterLogForwarder` custom resource did not take multiple forward outputs into account. This update resolves the issue. (link:https://issues.redhat.com/browse/LOG-2640[LOG-2640])
+
+* Before this update, clusters configured to forward logs to Amazon CloudWatch wrote rejected log files to temporary storage, causing cluster instability over time. With this update, chunk backup for CloudWatch has been disabled, resolving the issue. (link:https://issues.redhat.com/browse/LOG-2768[LOG-2768])
+
+[id="openshift-logging-5-4-3-CVEs"]
+== CVEs
+.Click to expand CVEs
+[%collapsible]
+====
+* link:https://access.redhat.com/security/cve/CVE-2020-28915[CVE-2020-28915]
+* link:https://access.redhat.com/security/cve/CVE-2021-40528[CVE-2021-40528]
+* link:https://access.redhat.com/security/cve/CVE-2022-1271[CVE-2022-1271]
+* link:https://access.redhat.com/security/cve/CVE-2022-1621[CVE-2022-1621]
+* link:https://access.redhat.com/security/cve/CVE-2022-1629[CVE-2022-1629]
+* link:https://access.redhat.com/security/cve/CVE-2022-22576[CVE-2022-22576]
+* link:https://access.redhat.com/security/cve/CVE-2022-25313[CVE-2022-25313]
+* link:https://access.redhat.com/security/cve/CVE-2022-25314[CVE-2022-25314]
+* link:https://access.redhat.com/security/cve/CVE-2022-26691[CVE-2022-26691]
+* link:https://access.redhat.com/security/cve/CVE-2022-27666[CVE-2022-27666]
+* link:https://access.redhat.com/security/cve/CVE-2022-27774[CVE-2022-27774]
+* link:https://access.redhat.com/security/cve/CVE-2022-27776[CVE-2022-27776]
+* link:https://access.redhat.com/security/cve/CVE-2022-27782[CVE-2022-27782]
+* link:https://access.redhat.com/security/cve/CVE-2022-29824[CVE-2022-29824]
+====