ELSA-2020-5825

Опубликовано: 24 авг. 2020

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2020-5825: kubernetes kubeadm-ha-setup kubernetes-cni kubernetes-cni-plugins security update (IMPORTANT)

kubernetes [1.12.10-1.0.15]

Address CVE-2020-16845

kubeadm-ha-setup [0.0.2-1.0.73]

Fix update to coredns image tag

[0.0.2-1.0.72]

Address CVE-2020-16845

kubernetes-cni [0.7.1-1.0.3]

Pin min version of cni-plugins

kubernetes-cni-plugins [0.8.6-1.0.3]

Address CVE-2020-16845

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

kubeadm

1.12.10-1.0.15.el7

kubeadm-ha-setup

0.0.2-1.0.73.el7

kubectl

1.12.10-1.0.15.el7

kubelet

1.12.10-1.0.15.el7

kubernetes-cni

0.7.1-1.0.3.el7

kubernetes-cni-plugins

0.8.6-1.0.3.el7

Связанные CVE

CVE-2020-16845

Ссылки на источники

Связанные уязвимости

CVE-2020-16845

CVSS3: 7.5

ubuntu

почти 5 лет назад

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.

CVE-2020-16845

CVSS3: 7.5

redhat

почти 5 лет назад

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.

CVE-2020-16845

CVSS3: 7.5

nvd

почти 5 лет назад

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.

CVE-2020-16845

CVSS3: 7.5

msrc

почти 5 лет назад

Описание отсутствует

CVE-2020-16845

CVSS3: 7.5

debian

почти 5 лет назад

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loo ...