Oracle Errata System
Oracle Linux
5.3
2021-09-09T12:48:50
ELSA-2020-5727: kubernetes-cni-plugins kubernetes-cni kubernetes olcne security update (IMPORTANT)
Oracle Linux 7
kubernetes-cni-plugins
[0.8.6-1.0.1]
- Added Oracle specific build files for Kubernetes CNI Plugins
kubernetes-cni
[0.7.1-1.0.1]
- Added Oracle specific build files for Kubernetes CNI
kubernetes
[1.14.9-1.0.4]
- CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
- CVE-2020-8555: Half-Blind SSRF in kube-controller-manager
[1.14.9-1.0.3]
- [CVE-2019-11254] kube-apiserver Denial of Service vulnerability from malicious YAML payloads
[1.14.9-1.0.2]
- Use bounded crio version
[1.14.9-1.0.1]
- Added Oracle specific build files for Kubernetes
olcne
[1.0.4-1]
- CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
- CVE-2020-8555: Half-Blind SSRF in kube-controller-manager
IMPORTANT
Copyright 2020 Oracle, Inc.
CVE-2020-10749
CVE-2020-8555
olcne-agent
kubectl
kubernetes-cni-plugins
olcne-api-server
oraclelinux-release
kubelet
kubernetes-cni
olcne-utils
kubeadm
olcnectl
olcne-nginx
72f97b74ec551f03
^7
x86_64
0:1.14.9-1.0.4.el7
0:0.7.1-1.0.1.el7
0:0.8.6-1.0.2.el7
0:1.0.4-2.el7