ELSA-2020-5725

ULN >
Oracle Linux Errata repository >
ELSA-2020-5725

ELSA-2020-5725 - kubernetes kubeadm-ha-setup kubernetes-cni kubernetes-cni-plugins security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2020-06-12

Description

kubernetes
[1.12.10-1.0.12]
- CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
- CVE-2020-8555: Half-Blind SSRF in kube-controller-manager

kubeadm-ha-setup
[0.0.2-1.0.70]
- Enhance image tag read to depend on kubeadm-registry.sh for CVE release
CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
CVE-2020-8555: Half-Blind SSRF in kube-controller-manager

kubernetes-cni
[0.7.1-1.0.1]
- Added Oracle specific build files for Kubernetes CNI

kubernetes-cni-plugins
[0.8.6-1.0.1]
- Added Oracle specific build files for Kubernetes CNI Plugins

Related CVEs

CVE-2020-8555

CVE-2020-10749

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	kubeadm-ha-setup-0.0.2-1.0.70.el7.src.rpm	633c969174718ece5b2c7c9cecf4f82eef2cd68758f921106cddb1d2e739b977	ELSA-2020-5825	ol7_x86_64_addons
	kubernetes-1.12.10-1.0.12.el7.src.rpm	41e2e99f0ae5be698b8df345a70815f5751d0726289016b09c566112e8a96573	ELSA-2024-12329	ol7_x86_64_addons
	kubernetes-cni-0.7.1-1.0.1.el7.src.rpm	8e41b9d438e1d6b349f260929080cb645e74f2e613a2d0418ae8587b97781a5f	ELSA-2024-12189	ol7_x86_64_addons
	kubernetes-cni-0.7.1-1.0.1.el7.src.rpm	8e41b9d438e1d6b349f260929080cb645e74f2e613a2d0418ae8587b97781a5f	ELSA-2024-12189	ol7_x86_64_olcne
	kubernetes-cni-0.7.1-1.0.1.el7.src.rpm	8e41b9d438e1d6b349f260929080cb645e74f2e613a2d0418ae8587b97781a5f	ELSA-2024-12189	ol7_x86_64_olcne11
	kubernetes-cni-plugins-0.8.6-1.0.2.el7.src.rpm	3c6b66423acba1dcaf5a267b0de7a0504ed3823b79f559f5af7aef79763a8250	ELBA-2024-18618	ol7_x86_64_addons
	kubernetes-cni-plugins-0.8.6-1.0.2.el7.src.rpm	3c6b66423acba1dcaf5a267b0de7a0504ed3823b79f559f5af7aef79763a8250	ELBA-2024-18618	ol7_x86_64_olcne
	kubernetes-cni-plugins-0.8.6-1.0.2.el7.src.rpm	3c6b66423acba1dcaf5a267b0de7a0504ed3823b79f559f5af7aef79763a8250	ELBA-2024-18618	ol7_x86_64_olcne11
	kubeadm-1.12.10-1.0.12.el7.x86_64.rpm	432df5495216c073acb0dc14f1ec2f3fbc091cb8ef6810ffa52213d767d42ea9	ELSA-2024-12329	ol7_x86_64_addons
	kubeadm-ha-setup-0.0.2-1.0.70.el7.x86_64.rpm	00b12bf2bcad8bc66bcd2d8ac013ad5e5e4a336af2530c453f7e2ba037c8a8e9	ELSA-2020-5825	ol7_x86_64_addons
	kubectl-1.12.10-1.0.12.el7.x86_64.rpm	a5ceba26165fc16ca4818366c3d897086deec007fbfa81527863bd8bab4f850f	ELSA-2024-12329	ol7_x86_64_addons
	kubelet-1.12.10-1.0.12.el7.x86_64.rpm	2a8a8c0456a7e5a9852c69ea630b4c28e98e63089b6f6f6cf57eea2cb85dd22f	ELSA-2024-12329	ol7_x86_64_addons
	kubernetes-cni-0.7.1-1.0.1.el7.x86_64.rpm	88ca99d88ba3b06434d26c0ba0aadc7b67834460b1845f15ae940f2e48b2ffa1	ELSA-2024-12189	ol7_x86_64_addons
	kubernetes-cni-0.7.1-1.0.1.el7.x86_64.rpm	88ca99d88ba3b06434d26c0ba0aadc7b67834460b1845f15ae940f2e48b2ffa1	ELSA-2024-12189	ol7_x86_64_olcne
	kubernetes-cni-0.7.1-1.0.1.el7.x86_64.rpm	88ca99d88ba3b06434d26c0ba0aadc7b67834460b1845f15ae940f2e48b2ffa1	ELSA-2024-12189	ol7_x86_64_olcne11
	kubernetes-cni-plugins-0.8.6-1.0.2.el7.x86_64.rpm	8150e188a6a008b4d8c4aa29693ba5b76edef406416ad55255872f977f044f3e	ELBA-2024-18618	ol7_x86_64_addons
	kubernetes-cni-plugins-0.8.6-1.0.2.el7.x86_64.rpm	8150e188a6a008b4d8c4aa29693ba5b76edef406416ad55255872f977f044f3e	ELBA-2024-18618	ol7_x86_64_olcne
	kubernetes-cni-plugins-0.8.6-1.0.2.el7.x86_64.rpm	8150e188a6a008b4d8c4aa29693ba5b76edef406416ad55255872f977f044f3e	ELBA-2024-18618	ol7_x86_64_olcne11

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691