ELSA-2022-10033
- ULN >
- Oracle Linux Errata repository >
- ELSA-2022-10033
ELSA-2022-10033 - kubernetes security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2022-11-29 |
Description
kubernetes
[1.21.14-3]
- Addresses CVE-2022-3294 & CVE-2022-3162
[1.21.14-2]
- Fixed kubernetes-cni version.
[1.21.14-1]
- Addresses CVE-2022-3172
olcne
[1.4.9-2]
- Fix 1.21 kubernetes version to align with last upstream release
[1.4.9-1]
- Resolve kubernetes CVE-2022-3294 & CVE-2022-3162 for version 1.21
[1.4.8-3]
- Unpinned podman for OL7
[1.4.8-2]
- Updated Kubernetes package release version to 1.21.6-2
[1.4.8-1]
- Upgraded kubernetes-1.21.6 to 1.21.14
- Resolve Kubernetes CVE-2022-3172 for version 1.21
[1.4.7-1]
- Upgrade Istio from 1.13.5 to 1.13.7 to resolve the CVE-2022-31045
[1.4.6-2]
- Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over
- Update gen-certs-helper script to skip printing olcne_transfer_script execution
- Cleanup grpc connection when node not found and use substr method in case fqdn used for hostname
[1.4.6-1]
- Adress Istio CVE-2022-31045, CVE-2022-29225, CVE-2022-29224,CVE-2022-29226,CVE-2022-29228,CVE-2022-29227
[1.4.5-1]
- Address qemu CVE-2022-26353, CVE-2021-3748
[1.4.4-1]
- Excluded unnecessary directories from k8s backup files
[1.4.3-1]
- Update Istio to 1.13.2
[1.4.2-1]
- Added 1.4 extra images to registry-image-helper.sh script
[1.4.1-4]
- Ensure that the order of items in an upgraded config file is stable with respect to the original file
- Ensure that old olcnectl config files are upgraded
[1.4.1-3]
- Fixed a bug where specifying a port in the container-registry argument
to the Kubernetes module would result in pods not being able to start.
[1.4.1-2]
- Allow loadbalancer to be configured regardless of security list mode
[1.4.1-1]
- Fix bug in initialising certs manager when environment name not mentioned
[1.4.0-3]
- Fix bug in fetching report for multi-environment
[1.4.0-2]
- Pause image is 3.4.1
[1.4.0-1]
- CSI plugin
- Reports feature
- Kubernetes-1.20.6 to Kubernetes-1.21.6 upgrade
- Istio-1.9.4 to Istio-1.11.4 upgrade
- Component upgrades
- Config file feature
[1.3.0-13]
- Fix iptables issue when running on OL7 host using OL8 image
[1.3.0-12]
- Address CVE's ISTIO-SECURITY-2021-003, ISTIO-SECURITY-2021-005, ISTIO-SECURITY-2021-006, ISTIO-SECURITY-2021-007
[1.3.0-11]
- Fixed yaml file to stop olcne-nginx and keepalived services at uninstall [Orabug: 32296282]
[1.3.0-10]
- Fixed missing double semicolon in registry image helper
[1.3.0-9]
Related CVEs
| CVE-2022-3162 |
| CVE-2022-3294 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 7 (x86_64) | kubernetes-1.21.14-3.el7.src.rpm | 0fa6b442185a0bfe236e7290838765023d4d4d6559c90afb0d4a8f0daba53990 | ELSA-2024-12329 | ol7_x86_64_olcne14 |
| olcne-1.4.9-2.el7.src.rpm | fa55d6f130092b0a96f15099a8d38fecc851dbe0bb88dab9208c28479c71b92f | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| kubeadm-1.21.14-3.el7.x86_64.rpm | c7d7ac320a224fe2ad9b9c0e6ccabd70c5e87b83d133797a9a45057991ed1658 | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| kubectl-1.21.14-3.el7.x86_64.rpm | 1b2c3ff0e04afaa9a573be9f5c45638a6059725e244e69b87460ee4cb7c5efd5 | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| kubelet-1.21.14-3.el7.x86_64.rpm | 145e209e4d486c05b4ac4fa42c0eb495f1b267f2b0aefc57dc6e0ed833bd1327 | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| olcne-agent-1.4.9-2.el7.x86_64.rpm | 4f65933d147a75b69999c10e294aa66de8e044c1fa98c388ecf055b11903ffa1 | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| olcne-api-server-1.4.9-2.el7.x86_64.rpm | fae9aae43f46e69427a65bc426f27be1c474a6af0057d5efa18b2f51db8ccb5b | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| olcne-gluster-chart-1.4.9-2.el7.x86_64.rpm | 9d208680e3787a8c9466f44b7bf4ae43db55dec09938ea9d37071c294a7ed788 | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| olcne-grafana-chart-1.4.9-2.el7.x86_64.rpm | 65ec1d1868999bbf2f278528c3f38a1b4a015969d0bcaa72b2f1d4c54662660e | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| olcne-istio-chart-1.4.9-2.el7.x86_64.rpm | fb140c93bf669a238fe9d4f297c7c0d5eeb5204456d7305e42cbd89d423845e7 | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| olcne-nginx-1.4.9-2.el7.x86_64.rpm | 394c80f1ef8acfb4473f83fb7cf2541b36ff9bfbe273bdd8f55eee4c00cf6cdf | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| olcne-oci-csi-chart-1.4.9-2.el7.x86_64.rpm | 76be1575541a58067a28698b45b20350bf6cbaa43424c56b9eed3f04506a5d39 | ELSA-2023-12013 | ol7_x86_64_olcne14 | |
| olcne-olm-chart-1.4.9-2.el7.x86_64.rpm | a7dca74131650bfc48b0e7ecc00b81072c13cd098905a14c0e2a1ad794fa2d38 | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| olcne-prometheus-chart-1.4.9-2.el7.x86_64.rpm | 3c721f20624f99017e20535b61e2d5bfe1efe03a95f1f74e50c89c01e701557d | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| olcne-utils-1.4.9-2.el7.x86_64.rpm | 875081a8f3f8f3f82d5dc0d0b8e8b7a240e16a408cecb9da24b454daec3e0f00 | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
| olcnectl-1.4.9-2.el7.x86_64.rpm | 609949798aab4e780d462362be8cbf5f69c803a58ffa8f8ce96ec5f4f9fdda9a | ELSA-2024-12329 | ol7_x86_64_olcne14 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
