# Hotfixes for Version 2.22 This section provides details on all hotfixes available for version 2.22. Hotfixes are critical updates released between our major and minor versions to address specific issues or vulnerabilities. These updates ensure the system remains secure, stable, and optimized without requiring a full version upgrade.
VersionDate (MM/DD/YYYY)Internal IDDescription
2.22.9603/30/2026RUN-34624Fixed an issue in Projects and Departments where GPU utilization/allocation metrics were not displayed if only partial data was available.
2.22.9603/30/2026RUN-36512Fixed a security vulnerability related to CVE-2025-64756 with severity HIGH.
2.22.9603/30/2026RUN-36443Fixed an issue where the dashboard returned a 500 error instead of an informative error message.
2.22.9603/30/2026RUN-36493Fixed a security vulnerability related to GHSA-43fc-jf86-j433 with severity HIGH.
2.22.9603/30/2026RUN-36598Fixed an issue where department data was not synced to the cluster, affecting both department creation and updates.
2.22.9603/30/2026RUN-36680Fixed a security vulnerability related to GHSA-pwhc-rpq9-4c8w with severity HIGH.
2.22.9603/30/2026RUN-36732Fixed a security vulnerability related to GHSA-5vv4-hvf7-2h46 with severity HIGH.
2.22.9603/30/2026RUN-37170Fixed a security vulnerability related to GHSA-23c5-xmqv-rm74 with severity HIGH.
2.22.9603/30/2026RUN-37174Fixed a security vulnerability related to GHSA-72hv-8253-57qq with severity HIGH.
2.22.9603/30/2026RUN-37278Fixed a security vulnerability related to CVE-2024-1013 with severity HIGH.
2.22.9603/30/2026RUN-37372Fixed a security vulnerability related to CVE-2025-61731 with severity HIGH.
2.22.9603/30/2026RUN-37504Fixed a security vulnerability related to CVE-2026-25679 with severity HIGH.
2.22.9603/30/2026RUN-37889Fixed a security vulnerability related to GHSA-p77j-4mvh-x3m3 with severity HIGH.
2.22.9302/15/2026RUN-36555Fixed a security vulnerability related to CVE-2024-56171 with severity HIGH.
2.22.9202/12/2026RUN-36380Fixed a security vulnerability related to GHSA-pwhc-rpq9-4c8w with severity HIGH.
2.22.9202/12/2026RUN-36381Fixed a security vulnerability related to GHSA-jmp9-x22r-554x with severity HIGH.
2.22.9202/12/2026RUN-36382Fixed a security vulnerability related to GHSA-cv78-6m8q-ph82 with severity HIGH.
2.22.9202/12/2026RUN-36413Fixed a security vulnerability related to CVE-2024-41110 with severity HIGH.
2.22.9202/12/2026RUN-36414Fixed a security vulnerability related to CVE-2025-14459 and CVE-2025-64324 with severity HIGH.
2.22.9202/12/2026RUN-36457Fixed an issue where, on rare occasions, "Allocation ratio by node pool" widget would show incorrect data.
2.22.9102/03/2026RUN-35326Fixed an issue where the Projects/Departments table in the Overview dashboard sometimes showed fewer than 15 projects/departments when their workloads did not have allocated GPUs or were not in Running or Pending status.
2.22.9001/26/2026RUN-35976Fixed an issue where workloads submitted with names longer than 63 characters failed to schedule.
2.22.8701/26/2026RUN-35443Fixed a security vulnerability related to CVE-2025-68973 with severity HIGH.
2.22.8601/25/2026RUN-35922Fixed a security vulnerability related to CVE-2026-0861 with severity HIGH.
2.22.7901/20/2026RUN-35421Fixed a security vulnerability related to CVE-2025-15284 with severity HIGH.
2.22.7901/20/2026RUN-35637Fixed an issue where, when CPU quota and Limit projects from exceeding department quota were both enabled, updating department or project memory quotas to very large values failed with incorrect validation errors, even though the values were valid.
2.22.7401/13/2026RUN-32181Fixed a security vulnerability related to CVE-2025-32988 with severity HIGH.
2.22.7401/13/2026RUN-34607Fixed issues where readiness probes did not work correctly with serving port authorization in single-node Knative inference workloads.
2.22.7401/13/2026RUN-34720Fixed a security vulnerability related to CVE-2025-65637 with severity HIGH.
2.22.7401/13/2026RUN-34858Fixed a security vulnerability related to CVE-2024-25621 with severity HIGH.
2.22.7401/13/2026RUN-35089Fixed a security vulnerability related to CVE-2025-64756 with severity HIGH.
2.22.7401/13/2026RUN-35189Fixed an issue where the --working-dir parameter was ignored for Knative-based inference workloads, causing containers to start in / instead of the specified directory.
2.22.7401/13/2026RUN-35290Fixed an issue where copying a workload that included node affinity settings caused the re-submission to fail.
2.22.7301/05/2026RUN-34721Fixed a security vulnerability related to CVE-2024-25621 with severity HIGH.
2.22.7212/30/2025RUN-34620Fixed an issue where, in rare cases, sessions could disconnect due to token refresh handling.
2.22.7112/25/2025RUN-34678Fixed a security vulnerability related to CVE-2025-58183 with severity HIGH.
2.22.7112/25/2025RUN-34932Fixed a security vulnerability related to CVE-2025-58754 with severity HIGH.
2.22.6912/22/2025RUN-33516Fixed an issue so each access rule created or deleted in a batch action is now audited in the events history.
2.22.6912/22/2025RUN-34613Fixed an issue where the Project GET API returned missing limit fields instead of an explicit unlimited value when CPU quotas were enabled.
2.22.6912/22/2025RUN-34680Fixed a security vulnerability related to CVE-2025-58183 with severity HIGH.
2.22.6912/22/2025RUN-34712Fixed a security vulnerability related to CVE-2025-61729 with severity HIGH.
2.22.6712/03/2025RUN-31856Fixed a security vulnerability related to CVE-2025-47907 with severity HIGH.
2.22.6712/03/2025RUN-33279Fixed an issue with refresh-token handling in legacy Grafana dashboards that caused unexpected session logouts.
2.22.6712/03/2025RUN-33780Fixed an issue where apps with the “Viewer” role could not access node metrics, even when they had read permissions at the cluster scope.
2.22.6611/25/2025RUN-33613Fixed missing validations for CPU resources when the CPU quota feature flag was disabled, which caused project and department updates to skip required CPU checks.
2.22.6611/25/2025RUN-33956Fixed an issue where workloads using an environment with multiple NodePorts could receive randomly allocated NodePort values.
2.22.6611/25/2025RUN-33862Fixed an issue where the workloads service could enter a CrashLoopBackOff during upgrade.
2.22.6511/20/2025RUN-33947Fixed an issue where SMTP configurations using the “none” option still sent empty username/password fields. Added the auth_none type to ensure no credentials are sent for passwordless SMTP servers.
2.22.6410/29/2025RUN-33388Fixed an issue where dependency checks did not run properly for clusters installed with a remote control plane.
2.22.6410/29/2025RUN-33127Fixed an issue where workload submission in the CLI failed when commands contained special characters.
2.22.6410/29/2025RUN-33144Fixed a security vulnerability related to CVE-2025-62156 with severity HIGH.
2.22.6310/27/2025RUN-32968Fixed an issue where users without permission to create data source assets were blocked from adding one-time data sources during workload submission.
2.22.6310/27/2025RUN-33006Fixed an issue in the CLI installer where the PATH was not configured for all shells. The installer now correctly configures PATH for both zsh and bash.
2.22.6210/23/2025RUN-33235Fixed a security vulnerability in the Valkey dependency.
2.22.6110/22/2025RUN-32989Fixed an issue where the NVIDIA Run:ai operator experienced unusually high CPU utilization after upgrading to version 2.22.49.
2.22.6010/22/2025RUN-33053Fixed an issue that caused conflicts with additional built-in Prometheus Operator deployments in OpenShift.
2.22.5910/19/2025RUN-32548Fixed an issue where, in certain edge cases, removing an inference workload without deleting its revision caused the cluster to panic during revision sync.
2.22.5910/19/2025RUN-33044Fixed an issue where the workload controller could delete all running workloads when init-ca generated a new certificate (every 30 days).
2.22.5910/19/2025RUN-31803Fixed an issue where the Quota management dashboard occasionally displayed incorrect GPU quota values.
2.22.5810/16/2025RUN-32707Fixed an issue where users running Red Hat OpenShift Serverless experienced “Down” status alerts in OpenShift monitoring due to NVIDIA Run:ai Knative ServiceMonitors.
2.22.5810/16/2025RUN-32572Fixed an issue where the RunaiAgentPullRateLow and RunaiAgentClusterInfoPushRateLow Prometheus alerts were firing incorrectly without cause.
2.22.5810/16/2025RUN-32899Fixed an issue where idle GPU timeout rules were incorrectly applied to preemptible workspaces.
2.22.5810/16/2025RUN-32986Fixed an issue where PVCs appeared with the status “Issues found” after upgrading to version 2.22.
2.22.5810/16/2025RUN-33147Fixed an issue where users with expired refresh tokens (after 24 hours) could not log in, as the token endpoint returned a 400 error.
2.22.5710/16/2025RUN-32073Fixed an issue where the Node pool modal displayed only the first 50 nodes instead of the full node list.
2.22.5710/16/2025RUN-33039Fixed an issue where setting uid or gid to 0 during environment creation was not allowed.
2.22.5510/09/2025RUN-32877Fixed an issue where the defaults.servingConfiguration.initializationTimeoutSeconds policy did not apply correctly, causing default values to not appear as expected in the UI.
2.22.5510/09/2025RUN-32730Fixed an issue where incorrect average GPU utilization per project and workload type was displayed in the Projects view charts and tables.
2.22.5309/30/2025RUN-32876Fixed an issue where running a NIM inference workload on a fractional GPU prevented the Triton server from starting, causing inference endpoint requests to fail.
2.22.5309/30/2025RUN-32605Fixed a security vulnerability related to CVE-2025-58754 with severity HIGH.
2.22.5309/30/2025RUN-32146Fixed a security vulnerability related to CVE-2025-5914 with severity HIGH.
2.22.5309/30/2025RUN-31993Fixed a security vulnerability related to CVE-2025-22868 with severity HIGH.
2.22.5109/21/2025RUN-31422Fixed an issue where updating project resources created through the deprecated Projects API did not work correctly.
2.22.5109/21/2025RUN-32159Fixed an issue where the updatedBy field of a policy did not show the latest user who updated it.
2.22.5109/21/2025RUN-32551Fixed an issue where inference workloads failed when using user credentials as an image pull secret.
2.22.5109/21/2025RUN-32554Fixed a security vulnerability related to CVE-2025-22874 with severity HIGH.
2.22.5109/21/2025RUN-32601Fixed an issue where external token exchange failed because the API was incompatible with access_tokens.
2.22.5109/21/2025RUN-32789Fixed an issue in CLI v2 where the --master-extended-resource flag had no effect in MPI training workloads.
2.22.4509/02/2025RUN-32123Fixed an issue where email notifications configured through User Settings were still sent after selecting and then immediately de-selecting all notification types.
2.22.4308/31/2025RUN-31961Fixed a security vulnerability related to CVE-2025-7425 with severity HIGH
2.22.4308/31/2025RUN-31797Fixed a security vulnerability related to CVE-2025-53547 with severity HIGH.
2.22.4308/31/2025RUN-31383Fixed a security vulnerability related to CVE-2025-7783 with severity HIGH.
2.22.4208/28/2025RUN-31423Fixed an issue where schedulers for different node pools were not scheduling jobs, causing workloads to remain Pending.
2.22.4108/27/2025RUN-32085Fixed an issue where custom inference workloads could not be created after enabling flexible workload submission.
2.22.3708/20/2025RUN-31304Fixed a security vulnerability related to CVE-2025-22868 with severity HIGH.
2.22.3708/20/2025RUN-31652Fixed a security vulnerability related to CVE-2025-7425 with severity HIGH.
2.22.3708/20/2025RUN-31852Fixed a security vulnerability in stdlib with CVE-2025-47907 with severity HIGH.
2.22.3508/18/2025RUN-31965Fixed a security vulnerability related to CVE-2025-22868 with severity HIGH.
2.22.3508/18/2025RUN-31571Fixed a security vulnerability related to CVE-2025-6965 with severity HIGH.
2.22.3408/17/2025RUN-31792Fixed a security vulnerability related to CVE-2025-7425 with severity HIGH.
2.22.3408/17/2025RUN-31860Fixed a security vulnerability related to CVE-2025-47907 with severity HIGH.
2.22.3308/14/2025RUN-31306Fixed a security vulnerability related to CVE-2025-22868 with severity HIGH.
2.22.3308/14/2025RUN-31855Fixed a security vulnerability related to CVE-2025-47907 with severity HIGH.
2.22.3108/14/2025RUN-31687Fixed an issue where the workload flexible submission form did not load the correct default node pools for a project.
2.22.2708/04/2025RUN-28394Fixed an issue where the "Get Role by ID" API returned an "insufficient permissions" error for system administrator.
2.22.2708/04/2025RUN-31008Fixed a security vulnerability related to CVE-2025-53547 with severity HIGH.
2.22.2708/04/2025RUN-31051Fixed a security vulnerability related to CVE-2025-49794 with severity HIGH.
2.22.2608/04/2025RUN-29610Fixed a security vulnerability related to CVE-2025-30204 with severity HIGH.
2.22.2608/04/2025RUN-31265Fixed a security vulnerability related to CVE-2025-30749 with severity HIGH.
2.22.2307/30/2025RUN-31275Fixed an issue where some returned objects in List Workload Types API had an empty "id" field
2.22.2207/30/2025RUN-29828Fixed an issue where the completion time date formatting in the Workload grid was inconsistent. Also resolved a bug where exported CSV files shifted date values to the next cell.
2.22.2207/30/2025RUN-31024Fixed an issue where inconsistent deletion behavior occurred for admin access rules between the Users and Access rules grid. The system now prevents deletion of the last remaining system admin rule to ensure at least one system admin remains.
2.22.2207/30/2025RUN-31039Fixed a base image security vulnerability in libxml2 related to CVE-2025-49796 with severity HIGH.
2.22.2207/30/2025RUN-31524Fixed an issue where the CLI would panic when submitting a workload with non-compliant policy rules defined for the tenant
2.22.2207/30/2025RUN-31263Fixed an issue where setting defaults for servingPort fields failed and incorrectly required the container port default as well.
2.22.2207/30/2025RUN-31305Fixed a security vulnerability in golang.org/x/oauth2 related to CVE-2025-22868 with severity HIGH.
2.22.2207/30/2025RUN-31380Fixed an issue where the SAML metadata XML redirect URL was invalid.
2.22.2007/20/2025RUN-29092Fixed an issue where project quota could not be changed due to scheduling rules being set to 0 instead of null.
2.22.1707/15/2025RUN-31129Fixed an issue where the Inference Policy view option was missing from the Project and Department grid.
2.22.1607/15/2025RUN-31066Fixed an issue where the validation for the number of workers in a policy was not applied correctly.
2.22.1607/15/2025RUN-37040Fixed an issue where negative values were allowed for GPU resource optimization swap size in node pool settings