ELSA-2022-9774

ULN >
Oracle Linux Errata repository >
ELSA-2022-9774

ELSA-2022-9774 - istio security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2022-09-08

Description

istio
[1.13.7-1]
- Added Oracle specific files for 1.13.7-1

olcne
[1.4.7-1]
- Upgrade Istio from 1.13.5 to 1.13.7 to resolve the CVE-2022-31045

[1.4.6-2]
- Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over
- Update gen-certs-helper script to skip printing olcne_transfer_script execution
- Cleanup grpc connection when node not found and use substr method in case fqdn used for hostname

[1.4.6-1]
- Adress Istio CVE-2022-31045, CVE-2022-29225, CVE-2022-29224,CVE-2022-29226,CVE-2022-29228,CVE-2022-29227

[1.4.5-1]
- Address qemu CVE-2022-26353, CVE-2021-3748

[1.4.4-1]
- Excluded unnecessary directories from k8s backup files

[1.4.3-1]
- Update Istio to 1.13.2

[1.4.2-1]
- Added 1.4 extra images to registry-image-helper.sh script

[1.4.1-4]
- Ensure that the order of items in an upgraded config file is stable with respect to the original file
- Ensure that old olcnectl config files are upgraded

[1.4.1-3]
- Fixed a bug where specifying a port in the container-registry argument
to the Kubernetes module would result in pods not being able to start.

[1.4.1-2]
- Allow loadbalancer to be configured regardless of security list mode

[1.4.1-1]
- Fix bug in initialising certs manager when environment name not mentioned

[1.4.0-3]
- Fix bug in fetching report for multi-environment

[1.4.0-2]
- Pause image is 3.4.1

[1.4.0-1]
- CSI plugin
- Reports feature
- Kubernetes-1.20.6 to Kubernetes-1.21.6 upgrade
- Istio-1.9.4 to Istio-1.11.4 upgrade
- Component upgrades
- Config file feature

[1.3.0-13]
- Fix iptables issue when running on OL7 host using OL8 image

[1.3.0-12]
- Address CVE's ISTIO-SECURITY-2021-003, ISTIO-SECURITY-2021-005, ISTIO-SECURITY-2021-006, ISTIO-SECURITY-2021-007

[1.3.0-11]
- Fixed yaml file to stop olcne-nginx and keepalived services at uninstall [Orabug: 32296282]

[1.3.0-10]
- Fixed missing double semicolon in registry image helper

[1.3.0-9]

Related CVEs

CVE-2022-31045

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	istio-1.13.7-1.el7.src.rpm	cfe34819f146b582f1e5109d449efa04c87ded81270749ac37300e73a5fe44fc	ELSA-2024-12329	ol7_x86_64_olcne14
	istio-1.13.7-1.el7.src.rpm	cfe34819f146b582f1e5109d449efa04c87ded81270749ac37300e73a5fe44fc	ELSA-2024-12329	ol7_x86_64_olcne15
	olcne-1.4.7-1.el7.src.rpm	e5615044a2dae64e1645a85bcbddb58571365ef139f8bd89649ec80dab8e2d13	ELSA-2024-12329	ol7_x86_64_olcne14
	istio-1.13.7-1.el7.x86_64.rpm	be0e0aec5b8ebe9cb53f70055287ab48416363c6f3ea688e32ead0c0cd9fe379	ELSA-2024-12329	ol7_x86_64_olcne14
	istio-1.13.7-1.el7.x86_64.rpm	be0e0aec5b8ebe9cb53f70055287ab48416363c6f3ea688e32ead0c0cd9fe379	ELSA-2024-12329	ol7_x86_64_olcne15
	istio-istioctl-1.13.7-1.el7.x86_64.rpm	ff3f1191ea7fbb2a2832f563416d1f9e93e179af2cf98584516e9cccf16a33c1	ELSA-2024-12329	ol7_x86_64_olcne14
	istio-istioctl-1.13.7-1.el7.x86_64.rpm	ff3f1191ea7fbb2a2832f563416d1f9e93e179af2cf98584516e9cccf16a33c1	ELSA-2024-12329	ol7_x86_64_olcne15
	olcne-agent-1.4.7-1.el7.x86_64.rpm	4322ef98119e4ca2fe259b59a8d08c3b0a1f6c255819497e629b32127aeb8326	ELSA-2024-12329	ol7_x86_64_olcne14
	olcne-api-server-1.4.7-1.el7.x86_64.rpm	e4e3e8a6f3d9a7c81892ed9319b908edccf780e652a9a77e1589cef8a74acf36	ELSA-2024-12329	ol7_x86_64_olcne14
	olcne-gluster-chart-1.4.7-1.el7.x86_64.rpm	8c31bee3f0f678227ab1d4e01adefee1cb158ad6afced7661f4fb9bf41a091d2	ELSA-2024-12329	ol7_x86_64_olcne14
	olcne-grafana-chart-1.4.7-1.el7.x86_64.rpm	5a63381816a875f656ab36a3b29318b4065a17c2cd010a36a6ca45bc0937e60b	ELSA-2024-12329	ol7_x86_64_olcne14
	olcne-istio-chart-1.4.7-1.el7.x86_64.rpm	efef374958abc37852d8d094a06bf09127fea7c4ed6aacdb4a3d1126a05b06b5	ELSA-2024-12329	ol7_x86_64_olcne14
	olcne-nginx-1.4.7-1.el7.x86_64.rpm	45ce0b2404bea4e2dfc946d9c5a33e02acfb117833180ef50080058341767f02	ELSA-2024-12329	ol7_x86_64_olcne14
	olcne-oci-csi-chart-1.4.7-1.el7.x86_64.rpm	ff8a095719f178c4b84f827271c25adbe37a0e27c91a1e5639463b6b32d5343b	ELSA-2023-12013	ol7_x86_64_olcne14
	olcne-olm-chart-1.4.7-1.el7.x86_64.rpm	30428f85cc5efd0db7e9aac153d668de87ae32eb97e0c9b7b3701113a71b2706	ELSA-2024-12329	ol7_x86_64_olcne14
	olcne-prometheus-chart-1.4.7-1.el7.x86_64.rpm	b58f73f5e7f9ad6e95171d6ebc55806f59e7c40f1b543abb4f5c820c878472a4	ELSA-2024-12329	ol7_x86_64_olcne14
	olcne-utils-1.4.7-1.el7.x86_64.rpm	6e06842f5bb7ba83c794c4fa4fac2e995761bd684b9cbdfef7c8557a03e0f34f	ELSA-2024-12329	ol7_x86_64_olcne14
	olcnectl-1.4.7-1.el7.x86_64.rpm	bea2e0f6ca55e0a29be621815d5ae90de7c73f0dfc6d41cfa8b86fda9d57d7e6	ELSA-2024-12329	ol7_x86_64_olcne14

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691