ELSA-2021-9546

ULN >
Oracle Linux Errata repository >
ELSA-2021-9546

ELSA-2021-9546 - olcne istio istio kubernetes security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2021-11-09

Description

olcne
[1.3.2-2]
- Turn off default PodDisruptionBudget in istio template to unblock kubernetes module upgrade
- Update Kubernetes version to 1.20.11 to address CVE-2021-25741
- Update Istio to 1.9.8, 1.10.4 to address CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781
- Update proxyv2 image to select iptables legacy or latest based on host operating system
- Fix major.minor k8s version

istio
[1.10.4-3]
- Updated iptables-switch for OL8 and OL7 logic

[1.10.4-2]
- Bump release, addresses the following envoy CVEs,
CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781

[1.10.4-1]
- Added Oracle specific files for 1.10.4-1

istio
[1.9.8-3]
- Updated iptables-switch for OL8 and OL7 logic

[1.9.8-2]
- Bump release, addresses the following envoy CVEs,
CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781

[1.9.8-1]
- Added Oracle specific files for 1.9.8-1

kubernetes
[1.20.11-4]
- Fix major.minor version

[1.20.11-3]
- Updated iptables-switch for OL8 and OL7 logic

[1.20.11-2]
- Bump release for CVE fix, addresses CVE-2021-25741

[1.20.11-1]
- Added Oracle specific build files for Kubernetes

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (x86_64)	istio-1.10.4-3.el8.src.rpm	ec017de156023f40be6a531ab0790317c4b55ed2b3ad06ed5aade436c8b50485	-	ol8_x86_64_olcne13
	istio-1.9.8-3.el8.src.rpm	2712a4f9ef2bf0fa4aef33f9e094d8db7bddb7f3790b0e8e081be0f20c316fc8	-	ol8_x86_64_olcne12
	istio-1.9.8-3.el8.src.rpm	2712a4f9ef2bf0fa4aef33f9e094d8db7bddb7f3790b0e8e081be0f20c316fc8	-	ol8_x86_64_olcne13
	kubernetes-1.20.11-4.el8.src.rpm	a2e4c1f711b1d52317990f1ed7e7b653bb89338569e410dfac7c670c965c60be	-	ol8_x86_64_olcne13
	olcne-1.3.2-2.el8.src.rpm	e0ff957b72b0b75b66a0536f407490f77dfee48b1a569b2fcea9009905b55cee	-	ol8_x86_64_olcne13
	istio-1.10.4-3.el8.x86_64.rpm	dbc4f2d62b976f0951611bc1684ad997307ca40a8f4981db42f2a907260e9c56	-	ol8_x86_64_olcne13
	istio-1.9.8-3.el8.x86_64.rpm	5c8a881ca92304accfc3b53b53752007d341cf6455a49b49df7814a8c3482a13	-	ol8_x86_64_olcne12
	istio-1.9.8-3.el8.x86_64.rpm	5c8a881ca92304accfc3b53b53752007d341cf6455a49b49df7814a8c3482a13	-	ol8_x86_64_olcne13
	istio-istioctl-1.10.4-3.el8.x86_64.rpm	779c9d78f50cec2864e836306cb1ac803e30b7dbd6eec0a5ed381fa021b036e2	-	ol8_x86_64_olcne13
	istio-istioctl-1.9.8-3.el8.x86_64.rpm	7f758dfa296e5d0247879fa76863960292e1750da10579d0e5bc2e36a35eeee7	-	ol8_x86_64_olcne12
	istio-istioctl-1.9.8-3.el8.x86_64.rpm	7f758dfa296e5d0247879fa76863960292e1750da10579d0e5bc2e36a35eeee7	-	ol8_x86_64_olcne13
	kubeadm-1.20.11-4.el8.x86_64.rpm	074e26049a296386ec92d96e8e0a5e91a37f491092a3145365a029e09d6a9f1f	-	ol8_x86_64_olcne13
	kubectl-1.20.11-4.el8.x86_64.rpm	56660cce74c24ad5e5ba27e96c5d74d29b1bae99cb1c219530255316d142a3cd	-	ol8_x86_64_olcne13
	kubelet-1.20.11-4.el8.x86_64.rpm	bdd5a0edb7b3328589d9818e688af736344a8c431ec967081412144bafa5c4f5	-	ol8_x86_64_olcne13
	olcne-agent-1.3.2-2.el8.x86_64.rpm	e6af9f4bfd51a5985be4834492206b2201a89b57d0ff45e4f277374050f6768a	-	ol8_x86_64_olcne13
	olcne-api-server-1.3.2-2.el8.x86_64.rpm	7a91e1205caa62cfa349f45081e8c5aed2a9bd1c0bf2ae7d796ddd00bdb54495	-	ol8_x86_64_olcne13
	olcne-grafana-chart-1.3.2-2.el8.x86_64.rpm	7fa758bb6cb7e445dc39e3e5fc0c2af79e0e6c801906995e92da8b0aa552cdc4	-	ol8_x86_64_olcne13
	olcne-istio-chart-1.3.2-2.el8.x86_64.rpm	466ced8fe222cc1b6a4efc53502aa7744f47c38644610c28898344ad1bc6f7b9	-	ol8_x86_64_olcne13
	olcne-nginx-1.3.2-2.el8.x86_64.rpm	505155403838d6d3d82138712ada4d0e162d2254bba6f053683f4afa9f9b432a	-	ol8_x86_64_olcne13
	olcne-olm-chart-1.3.2-2.el8.x86_64.rpm	98a60037709f66f18fddfbcc9db41f9e7ade64a1c1466fe6e74655bf642c35c6	-	ol8_x86_64_olcne13
	olcne-prometheus-chart-1.3.2-2.el8.x86_64.rpm	0cef2c62b821108f9862819ae6558b9282171f7c55784d20b63110967d700401	-	ol8_x86_64_olcne13
	olcne-utils-1.3.2-2.el8.x86_64.rpm	660d7874a4f11745d8a24fc41de0d1d96c7be77ec40a839b0b7d4440638ec813	-	ol8_x86_64_olcne13
	olcnectl-1.3.2-2.el8.x86_64.rpm	a618186a44d63838ed16e06cf282210fa28cbcb02760ae2d4dd3c8daadec01ab	-	ol8_x86_64_olcne13

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691