ELSA-2022-9854
- ULN >
- Oracle Linux Errata repository >
- ELSA-2022-9854
ELSA-2022-9854 - kubernetes security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2022-10-05 |
Description
kubernetes
[1.21.14-2]
- Fixed kubernetes-cni version.
[1.21.14-1]
- Addresses CVE-2022-3172
olcne
[1.4.8-2]
- Updated Kubernetes package release version to 1.21.6-2
[1.4.8-1]
- Upgraded kubernetes-1.21.6 to 1.21.14
- Resolve Kubernetes CVE-2022-3172 for version 1.21
[1.4.7-1]
- Upgrade Istio from 1.13.5 to 1.13.7 to resolve the CVE-2022-31045
[1.4.6-2]
- Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over
- Update gen-certs-helper script to skip printing olcne_transfer_script execution
- Cleanup grpc connection when node not found and use substr method in case fqdn used for hostname
[1.4.6-1]
- Adress Istio CVE-2022-31045, CVE-2022-29225, CVE-2022-29224,CVE-2022-29226,CVE-2022-29228,CVE-2022-29227
[1.4.5-1]
- Address qemu CVE-2022-26353, CVE-2021-3748
[1.4.4-1]
- Excluded unnecessary directories from k8s backup files
[1.4.3-1]
- Update Istio to 1.13.2
[1.4.2-1]
- Added 1.4 extra images to registry-image-helper.sh script
[1.4.1-4]
- Ensure that the order of items in an upgraded config file is stable with respect to the original file
- Ensure that old olcnectl config files are upgraded
[1.4.1-3]
- Fixed a bug where specifying a port in the container-registry argument
to the Kubernetes module would result in pods not being able to start.
[1.4.1-2]
- Allow loadbalancer to be configured regardless of security list mode
[1.4.1-1]
- Fix bug in initialising certs manager when environment name not mentioned
[1.4.0-3]
- Fix bug in fetching report for multi-environment
[1.4.0-2]
- Pause image is 3.4.1
[1.4.0-1]
- CSI plugin
- Reports feature
- Kubernetes-1.20.6 to Kubernetes-1.21.6 upgrade
- Istio-1.9.4 to Istio-1.11.4 upgrade
- Component upgrades
- Config file feature
[1.3.0-13]
- Fix iptables issue when running on OL7 host using OL8 image
[1.3.0-12]
- Address CVE's ISTIO-SECURITY-2021-003, ISTIO-SECURITY-2021-005, ISTIO-SECURITY-2021-006, ISTIO-SECURITY-2021-007
[1.3.0-11]
- Fixed yaml file to stop olcne-nginx and keepalived services at uninstall [Orabug: 32296282]
[1.3.0-10]
- Fixed missing double semicolon in registry image helper
[1.3.0-9]
Related CVEs
| CVE-2022-3172 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 8 (x86_64) | kubernetes-1.21.14-2.el8.src.rpm | 6445d4969de03c166315a7e24c56448e2b5be3c499044757870f482bad63ce69 | - | ol8_x86_64_olcne14 |
| olcne-1.4.8-2.el8.src.rpm | dbef3eea235917d5651b63523a02180cc55a549642ac1d846a15576297c23e45 | - | ol8_x86_64_olcne14 | |
| kubeadm-1.21.14-2.el8.x86_64.rpm | 54ac6c37062b4abf74fc8d9ea1e2145851451ff56c0925722cf4b7f5f9072bbc | - | ol8_x86_64_olcne14 | |
| kubectl-1.21.14-2.el8.x86_64.rpm | 57120f77ee4ea95c82fc2dbcabe37e313a98a77b65cc64cc7b8632ba64c2cb40 | - | ol8_x86_64_olcne14 | |
| kubelet-1.21.14-2.el8.x86_64.rpm | a3ad9ef27b71733ac75ce4cea4f63f246fbdb40ede336dc8d058a64b526a8c55 | - | ol8_x86_64_olcne14 | |
| olcne-agent-1.4.8-2.el8.x86_64.rpm | 26adaae708181ab05392d6cf74b99d3b8bfc9449da76fb039b00e77efb1cc423 | - | ol8_x86_64_olcne14 | |
| olcne-api-server-1.4.8-2.el8.x86_64.rpm | 8c37f17f467fe163fd49fd4e2fea20744b007681829115fc0410b49e6f6004b1 | - | ol8_x86_64_olcne14 | |
| olcne-gluster-chart-1.4.8-2.el8.x86_64.rpm | 1f7a220b061df5f691794396b77c6f433a83d7cde9baad1d7e98ce9a6e6e644c | - | ol8_x86_64_olcne14 | |
| olcne-grafana-chart-1.4.8-2.el8.x86_64.rpm | c36b442fdf54e5847ba1fb95b564989e11e665a43b55f393a05f49e6ee8dc5bb | - | ol8_x86_64_olcne14 | |
| olcne-istio-chart-1.4.8-2.el8.x86_64.rpm | 481f2df9753b2b3e3518672963bd73afe14de3de2399215400f220b5daac336d | - | ol8_x86_64_olcne14 | |
| olcne-nginx-1.4.8-2.el8.x86_64.rpm | d17c942408ff01f531c390820884fab82d19efb886787e1037221f353489a8fe | - | ol8_x86_64_olcne14 | |
| olcne-oci-csi-chart-1.4.8-2.el8.x86_64.rpm | bed4d5f9f236f97c209c1cf66626ade70c7363fb303d87a170b2aae5bcbb59c8 | - | ol8_x86_64_olcne14 | |
| olcne-olm-chart-1.4.8-2.el8.x86_64.rpm | 258ec7717f76dd4fed53a0e0472d1e263f6ede19d9bed6ac09f78dd50b8a2dc4 | - | ol8_x86_64_olcne14 | |
| olcne-prometheus-chart-1.4.8-2.el8.x86_64.rpm | 4c763d943cb33ce9f65cd59305c4da597060d0ced8e89de8166f3d67d2fdbd38 | - | ol8_x86_64_olcne14 | |
| olcne-utils-1.4.8-2.el8.x86_64.rpm | 8456338dbcbb34d85fa0197c5ce1b9f775a6e3a68003b66fc88ac1e69b2e7d6e | - | ol8_x86_64_olcne14 | |
| olcnectl-1.4.8-2.el8.x86_64.rpm | 97bebf1d7c923649f86e8aefbc72f178764821719b1a995567edbc4a72e8984d | - | ol8_x86_64_olcne14 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
