Описание
ELSA-2020-5827: olcne conmon coredns cri-o cri-tools etcd flannel grafana helm istio kata kata-agent kata-image kata-ksm-throttler kata-proxy kata-runtime kata-shim kubernetes kubernetes-cni kubernetes-cni-plugins kubernetes-dashboard prometheus yq security update (IMPORTANT)
olcne [1.1.5-2]
- kubernetes pod subnet flag not honored in flannel configuration
[1.1.5-1]
- Address CVE-2020-16845
conmon [2.0.10-3]
- Address CVE-2020-16845
coredns [1.6.5-1.0.3]
- Address CVE-2020-16845
cri-o [1.17.0-1.0.5]
- Address CVE-2020-16845
cri-tools [1.17.0-1.0.2]
- Address CVE-2020-16845
[1.17.0-1.0.1]
- Added Oracle Specific Build Files for cri-tools
etcd [3.4.3-1.0.2]
- Address CVE-2020-16845
flannel [0.10.0-2.1.12]
- Address CVE-2020-16845
[0.10.0-2.1.11]
- Resize flannel image
[0.10.0-2.1.10]
- Fix image location
grafana [6.7.4-1.0.2]
- Address CVE-2020-16845
helm [3.1.1-1.0.2]
- Address CVE-2020-16845
istio [1.4.10-1.0.2]
- CVE-2020-16845 encoding/binary: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs
kata [1.7.3-1.0.9]
- Address CVE-2020-16845
kata-agent [1.7.3-1.0.6]
- Address CVE-2020-16845
kata-image [1.7.3-1.0.6.1]
- Address CVE-2020-16845
kata-ksm-throttler [1.7.3-1.0.5]
- Address CVE-2020-16845
kata-proxy [1.7.3-1.0.5]
- Address CVE-2020-16845
kata-runtime [1.7.3-1.0.6]
- Address CVE-2020-16845
kata-shim [1.7.3-1.0.5]
- Address CVE-2020-16845
kubernetes [1.17.9-1.0.5]
- Pin min version of components
[1.17.9-1.0.4]
- Address CVE-2020-16845
kubernetes-cni [0.7.1-1.0.3]
- Pin min version of cni-plugins
[0.7.1-1.0.2]
- Address CVE-2020-16845
kubernetes-cni-plugins [0.8.6-1.0.3]
- Address CVE-2020-16845
kubernetes-dashboard [2.0.0-1.0.2]
- Address CVE-2020-16845
prometheus [2.13.1-1.0.3]
- Address CVE-2020-16845
yq [2.4.0-1.0.5]
- Address CVE-2020-16845
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
conmon
2.0.10-3.el7
coredns
1.6.5-1.0.3.el7
cri-o
1.17.0-1.0.5.el7
cri-tools
1.17.0-1.0.2.el7
etcd
3.4.3-1.0.2.el7
flannel
0.10.0-2.1.12.el7
grafana
6.7.4-1.0.2.el7
helm
3.1.1-1.0.2.el7
istio
1.4.10-1.0.2.el7
istio-citadel
1.4.10-1.0.2.el7
istio-galley
1.4.10-1.0.2.el7
istio-istioctl
1.4.10-1.0.2.el7
istio-mixc
1.4.10-1.0.2.el7
istio-mixs
1.4.10-1.0.2.el7
istio-node-agent
1.4.10-1.0.2.el7
istio-pilot-agent
1.4.10-1.0.2.el7
istio-pilot-discovery
1.4.10-1.0.2.el7
istio-proxy-init
1.4.10-1.0.2.el7
istio-sidecar-injector
1.4.10-1.0.2.el7
kata
1.7.3-1.0.9.el7
kata-agent
1.7.3-1.0.6.el7
kata-image
1.7.3-1.0.6.1.ol7_202008171204
kata-ksm-throttler
1.7.3-1.0.5.el7
kata-proxy
1.7.3-1.0.5.el7
kata-runtime
1.7.3-1.0.6.el7
kata-shim
1.7.3-1.0.5.el7
kubeadm
1.17.9-1.0.5.el7
kubectl
1.17.9-1.0.5.el7
kubelet
1.17.9-1.0.5.el7
kubernetes-cni
0.7.1-1.0.3.el7
kubernetes-cni-plugins
0.8.6-1.0.3.el7
kubernetes-dashboard
2.0.0-1.0.2.el7
olcne-agent
1.1.5-2.el7
olcne-api-server
1.1.5-2.el7
olcne-istio-chart
1.1.5-2.el7
olcne-nginx
1.1.5-2.el7
olcne-prometheus-chart
1.1.5-2.el7
olcne-utils
1.1.5-2.el7
olcnectl
1.1.5-2.el7
prometheus
2.13.1-1.0.3.el7
yq
2.4.0-1.0.5.el7
Связанные CVE
Связанные уязвимости
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.
Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loo ...