mfojtik · July 2, 2020 09:15
diff --git a/gistfile1.txt b/gistfile1.txt
 [0.59] 1837540 [BM IPI] Cluster reports upgrade in progress after restoring to previous state after upgrade
       1836270 [BM IPI] etcd containers not started on master after restoring to previous state
 [0.53] 1802510 KubeApiErrorsHigh alert is firing sometimes
       1748434 KubeAPIErrorsHigh firing on daily base but at random times
 [0.66] 1838410 openshift api server operator is not Available
       1840112 openshift-apiserver not available in fresh env
 [0.53] 1748434 KubeAPIErrorsHigh firing on daily base but at random times
       1802510 KubeApiErrorsHigh alert is firing sometimes
 [0.98] 1840116 revert "force cert rotation every couple days for development" in 4.6
       1806980 revert "force cert rotation every couple days for development" in 4.5
 [0.85] 1840116 revert "force cert rotation every couple days for development" in 4.6
       1840597 Revert revert "force cert rotation every couple days for development" in 4.6 after branching
 [0.50] 1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
       1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
 [0.56] 1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
       1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
 [0.57] 1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
       1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
 [0.95] 1806917 openshift-service-ca-operator: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
       1806915 openshift-service-ca: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
 [0.90] 1806917 openshift-service-ca-operator: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
       1806918 openshift-apiserver: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
 [0.59] 1809031 [RHOCP4.3] OpenShift APIs become unavailable for more than 15 minutes after one of master nodes went down(OAuth)
       1836300 Cluster API  and console not reachable for more than 15 minutes after one of three master-nodes shutdown
 [0.50] 1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
       1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
 [0.55] 1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
       1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
 [0.51] 1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
       1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
 [0.98] 1806980 revert "force cert rotation every couple days for development" in 4.5
       1840116 revert "force cert rotation every couple days for development" in 4.6
 [0.84] 1806980 revert "force cert rotation every couple days for development" in 4.5
       1840597 Revert revert "force cert rotation every couple days for development" in 4.6 after branching
 [0.84] 1819489 CVE-2020-10706 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-4]
       1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
 [0.72] 1819489 CVE-2020-10706 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-4]
       1839944 EMBARGOED CVE-2020-10752 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauthtokens leaked to logs on panic [openshift-4]
 [0.59] 1829645 cluster-etcd-operator: add relatedObjects for immediate creation by CVO
       1829319 Provide cluster's related object immediately during CVO creation for must-gather
 [0.59] 1829644 cluster-etcd-operator: add relatedObjects for immediate creation by CVO
       1829319 Provide cluster's related object immediately during CVO creation for must-gather
 [0.97] 1827052 [4.3] Operators may not respond to spec changes in managed deployments or daemonsets
       1827051 [4.4] Operators may not respond to spec changes in managed deployments or daemonsets
 [0.59] 1836270 [BM IPI] etcd containers not started on master after restoring to previous state
       1837540 [BM IPI] Cluster reports upgrade in progress after restoring to previous state after upgrade
 [0.98] 1826023 [4.2] etcd-snapshot-restore.sh fails due to "Error: snapshot restore requires exactly one argument"
       1826021 [4.3] etcd-snapshot-restore.sh fails due to "Error: snapshot restore requires exactly one argument"
 [0.54] 1811216 Authentication operator can remain progressing with unclear message
       1823622 [4.4] - Authentication operator is spamming message change events
 [0.97] 1827051 [4.4] Operators may not respond to spec changes in managed deployments or daemonsets
       1827052 [4.3] Operators may not respond to spec changes in managed deployments or daemonsets
 [0.56] 1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
       1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
 [0.55] 1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
       1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
 [0.53] 1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
       1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
 [0.51] 1824007 [must gather] Got "timed out waiting for the condition" for must gather
       1822643 Force certificate rotation without waiting for 24h
 [0.57] 1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
       1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
 [0.51] 1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
       1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
 [0.84] 1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
       1819489 CVE-2020-10706 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-4]
 [0.53] 1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
       1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
 [0.59] 1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
       1839944 EMBARGOED CVE-2020-10752 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauthtokens leaked to logs on panic [openshift-4]
 [0.98] 1826021 [4.3] etcd-snapshot-restore.sh fails due to "Error: snapshot restore requires exactly one argument"
       1826023 [4.2] etcd-snapshot-restore.sh fails due to "Error: snapshot restore requires exactly one argument"
 [0.95] 1806915 openshift-service-ca: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
       1806917 openshift-service-ca-operator: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
 [0.92] 1806915 openshift-service-ca: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
       1806918 openshift-apiserver: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
 [0.66] 1840112 openshift-apiserver not available in fresh env
       1838410 openshift api server operator is not Available
 [0.90] 1806918 openshift-apiserver: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
       1806917 openshift-service-ca-operator: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
 [0.92] 1806918 openshift-apiserver: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
       1806915 openshift-service-ca: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
 [0.85] 1840597 Revert revert "force cert rotation every couple days for development" in 4.6 after branching
       1840116 revert "force cert rotation every couple days for development" in 4.6
 [0.84] 1840597 Revert revert "force cert rotation every couple days for development" in 4.6 after branching
       1806980 revert "force cert rotation every couple days for development" in 4.5
 [0.59] 1829319 Provide cluster's related object immediately during CVO creation for must-gather
       1829645 cluster-etcd-operator: add relatedObjects for immediate creation by CVO
 [0.59] 1829319 Provide cluster's related object immediately during CVO creation for must-gather
       1829644 cluster-etcd-operator: add relatedObjects for immediate creation by CVO
 [0.54] 1823622 [4.4] - Authentication operator is spamming message change events
       1811216 Authentication operator can remain progressing with unclear message
 [0.59] 1836300 Cluster API  and console not reachable for more than 15 minutes after one of three master-nodes shutdown
       1809031 [RHOCP4.3] OpenShift APIs become unavailable for more than 15 minutes after one of master nodes went down(OAuth)
 [0.51] 1822643 Force certificate rotation without waiting for 24h
       1824007 [must gather] Got "timed out waiting for the condition" for must gather
 [0.72] 1839944 EMBARGOED CVE-2020-10752 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauthtokens leaked to logs on panic [openshift-4]
       1819489 CVE-2020-10706 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-4]
 [0.59] 1839944 EMBARGOED CVE-2020-10752 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauthtokens leaked to logs on panic [openshift-4]
       1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
	[0.59] 1837540 [BM IPI] Cluster reports upgrade in progress after restoring to previous state after upgrade
	1836270 [BM IPI] etcd containers not started on master after restoring to previous state
	[0.53] 1802510 KubeApiErrorsHigh alert is firing sometimes
	1748434 KubeAPIErrorsHigh firing on daily base but at random times
	[0.66] 1838410 openshift api server operator is not Available
	1840112 openshift-apiserver not available in fresh env
	[0.53] 1748434 KubeAPIErrorsHigh firing on daily base but at random times
	1802510 KubeApiErrorsHigh alert is firing sometimes
	[0.98] 1840116 revert "force cert rotation every couple days for development" in 4.6
	1806980 revert "force cert rotation every couple days for development" in 4.5
	[0.85] 1840116 revert "force cert rotation every couple days for development" in 4.6
	1840597 Revert revert "force cert rotation every couple days for development" in 4.6 after branching
	[0.50] 1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
	1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
	[0.56] 1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
	1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
	[0.57] 1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
	1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
	[0.95] 1806917 openshift-service-ca-operator: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	1806915 openshift-service-ca: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	[0.90] 1806917 openshift-service-ca-operator: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	1806918 openshift-apiserver: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	[0.59] 1809031 [RHOCP4.3] OpenShift APIs become unavailable for more than 15 minutes after one of master nodes went down(OAuth)
	1836300 Cluster API and console not reachable for more than 15 minutes after one of three master-nodes shutdown
	[0.50] 1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
	1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
	[0.55] 1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
	1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
	[0.51] 1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
	1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
	[0.98] 1806980 revert "force cert rotation every couple days for development" in 4.5
	1840116 revert "force cert rotation every couple days for development" in 4.6
	[0.84] 1806980 revert "force cert rotation every couple days for development" in 4.5
	1840597 Revert revert "force cert rotation every couple days for development" in 4.6 after branching
	[0.84] 1819489 CVE-2020-10706 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-4]
	1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
	[0.72] 1819489 CVE-2020-10706 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-4]
	1839944 EMBARGOED CVE-2020-10752 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauthtokens leaked to logs on panic [openshift-4]
	[0.59] 1829645 cluster-etcd-operator: add relatedObjects for immediate creation by CVO
	1829319 Provide cluster's related object immediately during CVO creation for must-gather
	[0.59] 1829644 cluster-etcd-operator: add relatedObjects for immediate creation by CVO
	1829319 Provide cluster's related object immediately during CVO creation for must-gather
	[0.97] 1827052 [4.3] Operators may not respond to spec changes in managed deployments or daemonsets
	1827051 [4.4] Operators may not respond to spec changes in managed deployments or daemonsets
	[0.59] 1836270 [BM IPI] etcd containers not started on master after restoring to previous state
	1837540 [BM IPI] Cluster reports upgrade in progress after restoring to previous state after upgrade
	[0.98] 1826023 [4.2] etcd-snapshot-restore.sh fails due to "Error: snapshot restore requires exactly one argument"
	1826021 [4.3] etcd-snapshot-restore.sh fails due to "Error: snapshot restore requires exactly one argument"
	[0.54] 1811216 Authentication operator can remain progressing with unclear message
	1823622 [4.4] - Authentication operator is spamming message change events
	[0.97] 1827051 [4.4] Operators may not respond to spec changes in managed deployments or daemonsets
	1827052 [4.3] Operators may not respond to spec changes in managed deployments or daemonsets
	[0.56] 1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
	1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
	[0.55] 1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
	1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
	[0.53] 1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
	1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
	[0.51] 1824007 [must gather] Got "timed out waiting for the condition" for must gather
	1822643 Force certificate rotation without waiting for 24h
	[0.57] 1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
	1798289 CVE-2020-8552 atomic-openshift: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [openshift-enterprise-3.11-default]
	[0.51] 1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
	1728130 CVE-2017-18367 atomic-openshift: libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions [openshift-enterprise-3.11-default]
	[0.84] 1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
	1819489 CVE-2020-10706 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-4]
	[0.53] 1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
	1695938 CVE-2019-3884 atomic-openshift: cross-namespace owner references can trigger deletions of valid children [openshift-enterprise-3.11-default]
	[0.59] 1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]
	1839944 EMBARGOED CVE-2020-10752 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauthtokens leaked to logs on panic [openshift-4]
	[0.98] 1826021 [4.3] etcd-snapshot-restore.sh fails due to "Error: snapshot restore requires exactly one argument"
	1826023 [4.2] etcd-snapshot-restore.sh fails due to "Error: snapshot restore requires exactly one argument"
	[0.95] 1806915 openshift-service-ca: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	1806917 openshift-service-ca-operator: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	[0.92] 1806915 openshift-service-ca: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	1806918 openshift-apiserver: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	[0.66] 1840112 openshift-apiserver not available in fresh env
	1838410 openshift api server operator is not Available
	[0.90] 1806918 openshift-apiserver: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	1806917 openshift-service-ca-operator: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	[0.92] 1806918 openshift-apiserver: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	1806915 openshift-service-ca: Some core components are in openshift.io/run-level 1 and are bypassing SCC, but should not be
	[0.85] 1840597 Revert revert "force cert rotation every couple days for development" in 4.6 after branching
	1840116 revert "force cert rotation every couple days for development" in 4.6
	[0.84] 1840597 Revert revert "force cert rotation every couple days for development" in 4.6 after branching
	1806980 revert "force cert rotation every couple days for development" in 4.5
	[0.59] 1829319 Provide cluster's related object immediately during CVO creation for must-gather
	1829645 cluster-etcd-operator: add relatedObjects for immediate creation by CVO
	[0.59] 1829319 Provide cluster's related object immediately during CVO creation for must-gather
	1829644 cluster-etcd-operator: add relatedObjects for immediate creation by CVO
	[0.54] 1823622 [4.4] - Authentication operator is spamming message change events
	1811216 Authentication operator can remain progressing with unclear message
	[0.59] 1836300 Cluster API and console not reachable for more than 15 minutes after one of three master-nodes shutdown
	1809031 [RHOCP4.3] OpenShift APIs become unavailable for more than 15 minutes after one of master nodes went down(OAuth)
	[0.51] 1822643 Force certificate rotation without waiting for 24h
	1824007 [must gather] Got "timed out waiting for the condition" for must gather
	[0.72] 1839944 EMBARGOED CVE-2020-10752 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauthtokens leaked to logs on panic [openshift-4]
	1819489 CVE-2020-10706 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-4]
	[0.59] 1839944 EMBARGOED CVE-2020-10752 ose-openshift-apiserver-container: openshift/openshift-apiserver: oauthtokens leaked to logs on panic [openshift-4]
	1819490 CVE-2020-10706 atomic-openshift: openshift/openshift-apiserver: oauth tokens not encrypted when enabling encryption of data at rest [openshift-enterprise-3.11-default]