Oracle Errata System
Oracle Linux
5.3
2021-11-09T01:30:29
ELSA-2021-9526: olcne security update (IMPORTANT)
Oracle Linux 7
olcne
[1.3.2-2]
- Turn off default PodDisruptionBudget in istio template to unblock kubernetes module upgrade
- Update Kubernetes version to 1.20.11 to address CVE-2021-25741
- Update Istio to 1.9.8, 1.10.4 to address CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781
- Update proxyv2 image to select iptables legacy or latest based on host operating system
- Fix major.minor k8s version
istio
[1.9.8-3]
- Updated iptables-switch for OL8 and OL7 logic
[1.9.8-2]
- Bump release, addresses the following envoy CVEs,
CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781
[1.9.8-1]
- Added Oracle specific files for 1.9.8-1
istio
[1.10.4-3]
- Updated iptables-switch for OL8 and OL7 logic
[1.10.4-2]
- Bump release, addresses the following envoy CVEs,
CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781
[1.10.4-1]
- Added Oracle specific files for 1.10.4-1
kubernetes
[1.20.11-4]
- Fix major.minor version
[1.20.11-3]
- Updated iptables-switch for OL8 and OL7 logic
[1.20.11-2]
- Bump release for CVE fix, addresses CVE-2021-25741
[1.20.11-1]
- Added Oracle specific build files for Kubernetes
IMPORTANT
Copyright 2021 Oracle, Inc.
CVE-2021-32777
CVE-2021-32780
CVE-2021-32781
CVE-2021-32779
CVE-2021-25741
olcne-agent
kubectl
olcne-istio-chart
istio-istioctl
olcne-utils
oraclelinux-release
istio
olcne-grafana-chart
kubelet
olcne-prometheus-chart
olcne-olm-chart
olcne-api-server
kubeadm
olcnectl
olcne-nginx
72f97b74ec551f03
^7
x86_64
0:1.9.8-3.el7
0:1.10.4-3.el7
0:1.20.11-4.el7
0:1.3.2-2.el7