The IF001 release of Cloud Pak for Business Automation (CP4BA) corrects the log4jsecurity vulnerability (CVE-2021-44228) existing in Automation Document Processing (ADP) in the 21.0.3 GA release.
- Follow all deployment instructions for the 21.0.3-GA CP4BA release.
- Edit the Custom Resource (CR) yaml for the Cloud Pak for Business Automation deployment. For script deployments, the yaml is /scripts/generated-cr/ibm-cp4ba/ibm_cp4a_cr_final.yaml. For OCP console deployments, locate the yaml through Installed Operators, IBM Cloud Pak for Business Automation, CP4BA Deployment tab, select the ICP4ACluster, YAML tab.
- Change the tag in the ca_configuration section to 21.0.3-IF001. If the ca_configuration section does not exist, then add it.
spec: ca_configuration: global: image: repository: cp.icr.io/cp/cp4a/iadp tag: 21.0.3-IF001
Save and apply the yaml
oc -n <namespace> get pods
Was this topic helpful?
18 December 2021