ELSA-2020-5727

ELSA-2020-5727 - kubernetes-cni-plugins kubernetes-cni kubernetes olcne security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2020-06-12

Description


kubernetes-cni-plugins
[0.8.6-1.0.1]
- Added Oracle specific build files for Kubernetes CNI Plugins

kubernetes-cni
[0.7.1-1.0.1]
- Added Oracle specific build files for Kubernetes CNI

kubernetes
[1.14.9-1.0.4]
- CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
- CVE-2020-8555: Half-Blind SSRF in kube-controller-manager

[1.14.9-1.0.3]
- [CVE-2019-11254] kube-apiserver Denial of Service vulnerability from malicious YAML payloads

[1.14.9-1.0.2]
- Use bounded crio version

[1.14.9-1.0.1]
- Added Oracle specific build files for Kubernetes

olcne
[1.0.4-1]
- CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
- CVE-2020-8555: Half-Blind SSRF in kube-controller-manager


Related CVEs


CVE-2020-8555
CVE-2020-10749

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (x86_64) kubernetes-1.14.9-1.0.4.el7.src.rpm5d674e44291979a283e1972bf543400e-
kubernetes-cni-0.7.1-1.0.1.el7.src.rpmf79c937f906f9a4251f2fceea737c1e9-
kubernetes-cni-plugins-0.8.6-1.0.2.el7.src.rpmd0d6071990d2228efb95755bdc158b30-
olcne-1.0.4-2.el7.src.rpmf3daac7f341eeae7354634846c712ac3-
kubeadm-1.14.9-1.0.4.el7.x86_64.rpm8cb32e8a99347f332ce92d67eab64514-
kubectl-1.14.9-1.0.4.el7.x86_64.rpm70ce4cdc61c58627e72ce9f930498199-
kubelet-1.14.9-1.0.4.el7.x86_64.rpm459e010b43ba1e03bb6d847d772376e0-
kubernetes-cni-0.7.1-1.0.1.el7.x86_64.rpm01d78f2dace7d0294183489c0095cc58-
kubernetes-cni-plugins-0.8.6-1.0.2.el7.x86_64.rpm859755f024d6e8c516fb02e34324daec-
olcne-agent-1.0.4-2.el7.x86_64.rpm81f9ed9e3fe9a889ec33229585dfe2d5-
olcne-api-server-1.0.4-2.el7.x86_64.rpmddb68d2c1c697de04012244808a51d8f-
olcne-nginx-1.0.4-2.el7.x86_64.rpm950209ac9dfc67c1e5d66fd5881f42fa-
olcne-utils-1.0.4-2.el7.x86_64.rpme8ab7ae26ce1820814122cd7f9b98a66-
olcnectl-1.0.4-2.el7.x86_64.rpmebb2f1d4035dd31ea5671b105f21fdb7-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete