# April 2025 Patch 2 Release

This patch improves system reliability, enhances security, and fixes critical issues that affect <code class="expression">space.vars.product\_name</code> operations.

{% hint style="warning" %}
**Warning**

If you recently upgraded to the April 2025 release, it is strongly recommended that you apply this patch. It resolves critical upgrade blockers and includes key security fixes.
{% endhint %}

## Security

* Addressed vulnerabilities **CVE-2021-34141** and **CVE-2021-41495** (NumPy) to strengthen platform security.
* Passwords used in storage backend configurations are now encrypted and securely stored.
* UI no longer displays sensitive storage configuration passwords.

## Key Fixes and Improvements

* Replaced Gnocchi and Ceilometer related components with the more-scalable Prometheus stack for better performance.
* Fixed an issue with Windows VM boot failure on AMD hypervisors due to unsupported hv-evmcs feature.
* Fixed an issue causing `airctl configure` to fail due to missing default value for cluster provider in the interactive mode.
* Fixed an issue where newly created domain SSU and read-only users were unable to log in to the <code class="expression">space.vars.product\_acronym</code> UI.
* Fixed service stability issues for watcher, placement-api, and keystone-api pods in large-scale deployments.
* Updated NetApp Cinder driver to enable https transport using self-signed certificate.