ELSA-2024-12347

ELSA-2024-12347 - cri-o security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-04-26

Description

cri-o
[1.26.4-2]
- Address CVE-2024-24786

cri-tools
[1.26.1-5]
- Address CVE-2024-24786

etcd
[3.5.10-3]
- Address protobuf [CVE-2024-24786]

[3.5.10-1]
- Added Oracle specific build files

istio
[1.17.8-3]
- Address protobuf [CVE-2024-24786]
- Backport from 1.19.7 to address CVE-2024-23322, CVE-2024-23323, CVE-2024-23324, CVE-2024-23325, CVE-2024-23327

kubernetes
[1.26.15-1]
- Added Oracle specific build files for Kubernetes

olcne
[1.7.7-2]
- Fixed unable to deploy new module(s) using config file containing already existing modules
- Update Istio-1.17.8 to address CVE-2024-24786, CVE-2024-23322, CVE-2024-23323, CVE-2024-23324, CVE-2024-23325, CVE-2024-23327
- Update Kubernetes-1.26.15 and components to address CVE-2024-24786

Related CVEs

CVE-2024-23327

CVE-2024-24786

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label
Oracle Linux 9 (x86_64)	cri-o-1.26.4-2.el9.src.rpm	92ace6a9be5080e9fa5dfed3390771c7	-	ol9_x86_64_olcne17
	cri-tools-1.26.1-5.el9.src.rpm	63b8f1274dc7fc3be54f6616bb563949	-	ol9_x86_64_olcne17
	etcd-3.5.10-3.el9.src.rpm	dce6d5e907d025e60b6bbbe467649822	-	ol9_x86_64_olcne17
	istio-1.17.8-3.el9.src.rpm	f96f1faffa9d3700263c20353157af58	-	ol9_x86_64_olcne17
	kubernetes-1.26.15-1.el9.src.rpm	204caba5e074a092459e3c731e71ccf6	-	ol9_x86_64_olcne17
	olcne-1.7.7-2.el9.src.rpm	a04ecdff75d6c2b8f9e4ee580ed90878	-	ol9_x86_64_olcne17
	cri-o-1.26.4-2.el9.x86_64.rpm	ac65fc4ea62d8df10c8947e2f89b5c37	-	ol9_x86_64_olcne17
	cri-tools-1.26.1-5.el9.x86_64.rpm	af8dde1b73f392824ebb1bddb40e5328	-	ol9_x86_64_olcne17
	etcd-3.5.10-3.el9.x86_64.rpm	16905398da7b541b611db4120607ebad	-	ol9_x86_64_olcne17
	istio-1.17.8-3.el9.x86_64.rpm	2ef1b8432ac4b1899a728b1dc32d3a45	-	ol9_x86_64_olcne17
	istio-istioctl-1.17.8-3.el9.x86_64.rpm	8663c3191de62de9f1345ab3e32a0d5a	-	ol9_x86_64_olcne17
	kubeadm-1.26.15-1.el9.x86_64.rpm	b4b5fca229f2e087d78072b0f6a2141f	-	ol9_x86_64_olcne17
	kubectl-1.26.15-1.el9.x86_64.rpm	56e3c0c90afa7cc6902b085932f3a4b4	-	ol9_x86_64_olcne17
	kubelet-1.26.15-1.el9.x86_64.rpm	7e8dadea504c10cf67c370f57ec21acb	-	ol9_x86_64_olcne17
	olcne-agent-1.7.7-2.el9.x86_64.rpm	52742f92fa5393fa6d9c917ea52456bb	-	ol9_x86_64_olcne17
	olcne-api-server-1.7.7-2.el9.x86_64.rpm	493689c0ec40bceeeb3c17cf3a52817c	-	ol9_x86_64_olcne17
	olcne-calico-chart-1.7.7-2.el9.x86_64.rpm	feb1b8d1eef633b260210a3101a2c32e	-	ol9_x86_64_olcne17
	olcne-gluster-chart-1.7.7-2.el9.x86_64.rpm	002df6c2205ecc0d53b7415885450ef8	-	ol9_x86_64_olcne17
	olcne-grafana-chart-1.7.7-2.el9.x86_64.rpm	def411252b64161928e4028002bbd60e	-	ol9_x86_64_olcne17
	olcne-istio-chart-1.7.7-2.el9.x86_64.rpm	40c3b8ccce85e9367e1a5d81f3548790	-	ol9_x86_64_olcne17
	olcne-kubevirt-chart-1.7.7-2.el9.x86_64.rpm	42f609e39bab0a4b83272dd3903cad52	-	ol9_x86_64_olcne17
	olcne-metallb-chart-1.7.7-2.el9.x86_64.rpm	44212745b82c25c45993c74107ba53fc	-	ol9_x86_64_olcne17
	olcne-multus-chart-1.7.7-2.el9.x86_64.rpm	7fb90504ce5bc1f287b7e0d1f8dbc98d	-	ol9_x86_64_olcne17
	olcne-nginx-1.7.7-2.el9.x86_64.rpm	13b42bd90497c4e649cbc7118ba97441	-	ol9_x86_64_olcne17
	olcne-oci-ccm-chart-1.7.7-2.el9.x86_64.rpm	5b7f601dfae0d1e5e4c6a3fb16db2f80	-	ol9_x86_64_olcne17
	olcne-olm-chart-1.7.7-2.el9.x86_64.rpm	d62a736abb280df7650f4cbc305e9f41	-	ol9_x86_64_olcne17
	olcne-prometheus-chart-1.7.7-2.el9.x86_64.rpm	9ba8ac749b782582bff709af3d47d136	-	ol9_x86_64_olcne17
	olcne-rook-chart-1.7.7-2.el9.x86_64.rpm	7830b677f629255fb05276feb18125cc	-	ol9_x86_64_olcne17
	olcne-utils-1.7.7-2.el9.x86_64.rpm	87fad8f08e1775607378b5db9510e951	-	ol9_x86_64_olcne17
	olcnectl-1.7.7-2.el9.x86_64.rpm	19217d2ae84bee478a4508f36d32d24d	-	ol9_x86_64_olcne17

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team