ELSA-2021-9526
- ULN >
- Oracle Linux Errata repository >
- ELSA-2021-9526
ELSA-2021-9526 - olcne security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2021-11-09 |
Description
olcne
[1.3.2-2]
- Turn off default PodDisruptionBudget in istio template to unblock kubernetes module upgrade
- Update Kubernetes version to 1.20.11 to address CVE-2021-25741
- Update Istio to 1.9.8, 1.10.4 to address CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781
- Update proxyv2 image to select iptables legacy or latest based on host operating system
- Fix major.minor k8s version
istio
[1.9.8-3]
- Updated iptables-switch for OL8 and OL7 logic
[1.9.8-2]
- Bump release, addresses the following envoy CVEs,
CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781
[1.9.8-1]
- Added Oracle specific files for 1.9.8-1
istio
[1.10.4-3]
- Updated iptables-switch for OL8 and OL7 logic
[1.10.4-2]
- Bump release, addresses the following envoy CVEs,
CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781
[1.10.4-1]
- Added Oracle specific files for 1.10.4-1
kubernetes
[1.20.11-4]
- Fix major.minor version
[1.20.11-3]
- Updated iptables-switch for OL8 and OL7 logic
[1.20.11-2]
- Bump release for CVE fix, addresses CVE-2021-25741
[1.20.11-1]
- Added Oracle specific build files for Kubernetes
Related CVEs
| CVE-2021-32777 |
| CVE-2021-32780 |
| CVE-2021-32781 |
| CVE-2021-32779 |
| CVE-2021-25741 |
| CVE-2021-32778 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 7 (x86_64) | istio-1.10.4-3.el7.src.rpm | 32f49b38896c5decd11f49bb8cc0bf00 | - |
| istio-1.9.8-3.el7.src.rpm | ccf1aa8fec3e9fcfe7520e55bfb1b38d | - | |
| kubernetes-1.20.11-4.el7.src.rpm | a860fca23068379bd5775de3d124ec2c | - | |
| olcne-1.3.2-2.el7.src.rpm | 474b715a10b4cd00c03d0c1330682b18 | - | |
| istio-1.10.4-3.el7.x86_64.rpm | 8d9ed901d978100cc1e5f4380e03b587 | - | |
| istio-1.9.8-3.el7.x86_64.rpm | 9df0c3313bf806e7d9eec31b2872a981 | - | |
| istio-istioctl-1.10.4-3.el7.x86_64.rpm | 198f907efd7eac812584db97b59c5dde | - | |
| istio-istioctl-1.9.8-3.el7.x86_64.rpm | 17ad617cbd0ead21a49538f0e56e5f33 | - | |
| kubeadm-1.20.11-4.el7.x86_64.rpm | 51e3edfa7ccfe83519965d30115f39f1 | - | |
| kubectl-1.20.11-4.el7.x86_64.rpm | a00c280c6f99861f62841f87c82b6b25 | - | |
| kubelet-1.20.11-4.el7.x86_64.rpm | 2cb1d8a960d728d6f15a9aa81d949c02 | - | |
| olcne-agent-1.3.2-2.el7.x86_64.rpm | f4160f93feaeb6fd6d5ef2cc658569fc | - | |
| olcne-api-server-1.3.2-2.el7.x86_64.rpm | c0d3c1796d2bc880f67fdbd6d1121167 | - | |
| olcne-grafana-chart-1.3.2-2.el7.x86_64.rpm | 01b07894eb12589173b3c765905f9603 | - | |
| olcne-istio-chart-1.3.2-2.el7.x86_64.rpm | eaf8c3aa4bc45a9e6730ebab4556fc09 | - | |
| olcne-nginx-1.3.2-2.el7.x86_64.rpm | bf3635af33fe571e3abca05fa8f6505a | - | |
| olcne-olm-chart-1.3.2-2.el7.x86_64.rpm | fa908402bdc51e491e9d7f6d154679e2 | - | |
| olcne-prometheus-chart-1.3.2-2.el7.x86_64.rpm | 62948bb0a086192641c6b7662b5b3451 | - | |
| olcne-utils-1.3.2-2.el7.x86_64.rpm | 7a20b569cfdce797ea413dc2946d31ca | - | |
| olcnectl-1.3.2-2.el7.x86_64.rpm | 957d67d6ff8a69a81beb508d724b2143 | - | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
