ELSA-2020-5725

ELSA-2020-5725 - kubernetes kubeadm-ha-setup kubernetes-cni kubernetes-cni-plugins security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2020-06-12

Description

kubernetes
[1.12.10-1.0.12]
- CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
- CVE-2020-8555: Half-Blind SSRF in kube-controller-manager

kubeadm-ha-setup
[0.0.2-1.0.70]
- Enhance image tag read to depend on kubeadm-registry.sh for CVE release
CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
CVE-2020-8555: Half-Blind SSRF in kube-controller-manager

kubernetes-cni
[0.7.1-1.0.1]
- Added Oracle specific build files for Kubernetes CNI

kubernetes-cni-plugins
[0.8.6-1.0.1]
- Added Oracle specific build files for Kubernetes CNI Plugins

Related CVEs

CVE-2020-10749

CVE-2020-8555

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 7 (x86_64)	kubeadm-ha-setup-0.0.2-1.0.70.el7.src.rpm	11177fd86861600c15135012b90cce51	ELSA-2020-5825
	kubernetes-1.12.10-1.0.12.el7.src.rpm	808c4c2c60593bb4b637af77d2de2020	ELBA-2021-9240
	kubernetes-cni-0.7.1-1.0.1.el7.src.rpm	f79c937f906f9a4251f2fceea737c1e9	ELBA-2021-9240
	kubernetes-cni-plugins-0.8.6-1.0.2.el7.src.rpm	d0d6071990d2228efb95755bdc158b30	ELBA-2021-9240
	kubeadm-1.12.10-1.0.12.el7.x86_64.rpm	6bc6b0a090f77681539064ee1bd22dc4	ELBA-2021-9240
	kubeadm-ha-setup-0.0.2-1.0.70.el7.x86_64.rpm	0a8280cc923742706d08c6c56925cb55	ELSA-2020-5825
	kubectl-1.12.10-1.0.12.el7.x86_64.rpm	44adba6813720a336c28ff03ba88425f	ELBA-2021-9240
	kubelet-1.12.10-1.0.12.el7.x86_64.rpm	044a9be2edfd7ff2724986b0bbd6f54e	ELBA-2021-9240
	kubernetes-cni-0.7.1-1.0.1.el7.x86_64.rpm	01d78f2dace7d0294183489c0095cc58	ELBA-2021-9240
	kubernetes-cni-plugins-0.8.6-1.0.2.el7.x86_64.rpm	859755f024d6e8c516fb02e34324daec	ELBA-2021-9240

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team