ELSA-2024-12348

ELSA-2024-12348 - cri-o security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-04-26

Description

cri-o
[1.26.4-2]
- Address CVE-2024-24786

cri-tools
[1.26.1-5]
- Address CVE-2024-24786

etcd
[3.5.10-3]
- Address protobuf [CVE-2024-24786]

[3.5.10-1]
- Added Oracle specific build files

istio
[1.17.8-3]
- Address protobuf [CVE-2024-24786]
- Backport from 1.19.7 to address CVE-2024-23322, CVE-2024-23323, CVE-2024-23324, CVE-2024-23325, CVE-2024-23327

kubernetes
[1.26.15-1]
- Added Oracle specific build files for Kubernetes

olcne
[1.7.7-2]
- Fixed unable to deploy new module(s) using config file containing already existing modules
- Update Istio-1.17.8 to address CVE-2024-24786, CVE-2024-23322, CVE-2024-23323, CVE-2024-23324, CVE-2024-23325, CVE-2024-23327
- Update Kubernetes-1.26.15 and components to address CVE-2024-24786

Related CVEs

CVE-2024-23327

CVE-2024-24786

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label
Oracle Linux 8 (x86_64)	cri-o-1.26.4-2.el8.src.rpm	0d003fbacd04d115928bc115202dcffd	-	ol8_x86_64_olcne17
	cri-tools-1.26.1-5.el8.src.rpm	507bf67332c0096c504a5579981c1834	-	ol8_x86_64_olcne17
	etcd-3.5.10-3.el8.src.rpm	68c1bb3d9006c952f1d9fff30588d12e	-	ol8_x86_64_olcne17
	istio-1.17.8-3.el8.src.rpm	903abd95cf5c9a2de78a6c0714c04928	-	ol8_x86_64_olcne17
	kubernetes-1.26.15-1.el8.src.rpm	a7fc3d9958a5aa0f1042a397467d1bba	-	ol8_x86_64_olcne17
	olcne-1.7.7-2.el8.src.rpm	8d1eba7979e7d973602e86be32a8e428	-	ol8_x86_64_olcne17
	cri-o-1.26.4-2.el8.x86_64.rpm	c62c41ac2dc1e6bcf11bb78b5409c2ad	-	ol8_x86_64_olcne17
	cri-tools-1.26.1-5.el8.x86_64.rpm	1e2150bce7cab59ef1e1277385aac6df	-	ol8_x86_64_olcne17
	etcd-3.5.10-3.el8.x86_64.rpm	45afa723db0aabfaa898da6b00150ef3	-	ol8_x86_64_olcne17
	istio-1.17.8-3.el8.x86_64.rpm	dfac254fe231d4f3f372706cdcbea6fb	-	ol8_x86_64_olcne17
	istio-istioctl-1.17.8-3.el8.x86_64.rpm	59e62426284109599fd8b6764dc8d027	-	ol8_x86_64_olcne17
	kubeadm-1.26.15-1.el8.x86_64.rpm	d25ca4e12a504a8838f4f440c992fb88	-	ol8_x86_64_olcne17
	kubectl-1.26.15-1.el8.x86_64.rpm	36c504d115bccb6c83062a633d8d12b7	-	ol8_x86_64_olcne17
	kubelet-1.26.15-1.el8.x86_64.rpm	bc38d7bf0fad074e8ebcec860d78f2f5	-	ol8_x86_64_olcne17
	olcne-agent-1.7.7-2.el8.x86_64.rpm	cf8a85da1db55369c696dd1fc86d217d	-	ol8_x86_64_olcne17
	olcne-api-server-1.7.7-2.el8.x86_64.rpm	bc19d065b331e56bdce02442080b038a	-	ol8_x86_64_olcne17
	olcne-calico-chart-1.7.7-2.el8.x86_64.rpm	978f3125446e1f79761584d3e604f0ec	-	ol8_x86_64_olcne17
	olcne-gluster-chart-1.7.7-2.el8.x86_64.rpm	707cd9c5c3af385207970ee7f846e9ed	-	ol8_x86_64_olcne17
	olcne-grafana-chart-1.7.7-2.el8.x86_64.rpm	656c0f987c0ab174ae2dcd7061ff64fe	-	ol8_x86_64_olcne17
	olcne-istio-chart-1.7.7-2.el8.x86_64.rpm	877c452ad032222e2a3f9f0e3d32382b	-	ol8_x86_64_olcne17
	olcne-kubevirt-chart-1.7.7-2.el8.x86_64.rpm	17da2408fe43967fd13a80ccd4043242	-	ol8_x86_64_olcne17
	olcne-metallb-chart-1.7.7-2.el8.x86_64.rpm	95f16274497b356f7aac73b7b8922832	-	ol8_x86_64_olcne17
	olcne-multus-chart-1.7.7-2.el8.x86_64.rpm	ed26bafd30b937a65e0adad6dd7a2fd1	-	ol8_x86_64_olcne17
	olcne-nginx-1.7.7-2.el8.x86_64.rpm	f02639a0c961fe701c14424039a69e70	-	ol8_x86_64_olcne17
	olcne-oci-ccm-chart-1.7.7-2.el8.x86_64.rpm	97861d0cf262ed51109e3c1aa552fd4d	-	ol8_x86_64_olcne17
	olcne-olm-chart-1.7.7-2.el8.x86_64.rpm	4bb6bf4d5704f8b5a05e8e6dcd071f6d	-	ol8_x86_64_olcne17
	olcne-prometheus-chart-1.7.7-2.el8.x86_64.rpm	863b45c492feaf98fc8b748f75365897	-	ol8_x86_64_olcne17
	olcne-rook-chart-1.7.7-2.el8.x86_64.rpm	13251043e52cf2973157434a23cf258e	-	ol8_x86_64_olcne17
	olcne-utils-1.7.7-2.el8.x86_64.rpm	49c616c5b59eec085112bff7de002eb5	-	ol8_x86_64_olcne17
	olcnectl-1.7.7-2.el8.x86_64.rpm	e80317cf42d07c769ee9f9151b5353b0	-	ol8_x86_64_olcne17

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team