Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2020-5828

Опубликовано: 31 авг. 2020
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2020-5828: coredns cri-o cri-tools etcd flannel kata kata-agent kata-image kata-ksm-throttler kata-proxy kata-runtime kata-shim kubernetes kubernetes-cni kubernetes-cni-plugins kubernetes-dashboard olcne yq security update (IMPORTANT)

coredns [1.3.1-1.0.6]

  • Address CVE-2020-16845

[1.3.1-1.0.5]

  • Fix image location

cri-o [1.14.7-1.0.8]

  • Address CVE-2020-16845

cri-tools [1.14.0-1.0.6]

  • Address CVE-2020-16845

etcd [3.3.10-1.0.5]

  • Address CVE-2020-16845

[3.3.10-1.0.4]

  • Fix image location

flannel [0.10.0-2.1.12]

  • Address CVE-2020-16845

[0.10.0-2.1.11]

  • Resize flannel image

[0.10.0-2.1.10]

  • Fix image location

kata [1.7.3-1.0.9]

  • Address CVE-2020-16845

kata-agent [1.7.3-1.0.6]

  • Address CVE-2020-16845

kata-image [1.7.3-1.0.6.1]

  • Address CVE-2020-16845

kata-ksm-throttler [1.7.3-1.0.5]

  • Address CVE-2020-16845

kata-proxy [1.7.3-1.0.5]

  • Address CVE-2020-16845

kata-runtime [1.7.3-1.0.6]

  • Address CVE-2020-16845

kata-shim [1.7.3-1.0.5]

  • Address CVE-2020-16845

kubernetes [1.14.9-1.0.9]

  • Pin components min version

[1.14.9-1.0.8]

  • Address CVE-2020-16845

kubernetes-cni [0.7.1-1.0.3]

  • Pin min version of cni-plugins

[0.7.1-1.0.2]

  • Address CVE-2020-16845

kubernetes-cni-plugins [0.8.6-1.0.3]

  • Address CVE-2020-16845

kubernetes-dashboard [1.10.1-1.1.8]

  • Address CVE-2020-16845

[1.8.3-2.0.1]

  • Update to v1.8.3

olcne [1.0.7-2]

  • kubernetes pod subnet flag not honored in flannel configuration

[1.0.7-1]

  • Address CVE-2020-16845

yq [2.4.0-1.0.5]

  • Address CVE-2020-16845

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

conmon

1.14.7-1.0.8.el7

coredns

1.3.1-1.0.6.el7

cri-o

1.14.7-1.0.8.el7

cri-tools

1.14.0-1.0.6.el7

etcd

3.3.10-1.0.5.el7

flannel

0.10.0-2.1.12.el7

kata

1.7.3-1.0.9.el7

kata-agent

1.7.3-1.0.6.el7

kata-image

1.7.3-1.0.6.1.ol7_202008171204

kata-ksm-throttler

1.7.3-1.0.5.el7

kata-proxy

1.7.3-1.0.5.el7

kata-runtime

1.7.3-1.0.6.el7

kata-shim

1.7.3-1.0.5.el7

kubeadm

1.14.9-1.0.9.el7

kubectl

1.14.9-1.0.9.el7

kubelet

1.14.9-1.0.9.el7

kubernetes-cni

0.7.1-1.0.3.el7

kubernetes-cni-plugins

0.8.6-1.0.3.el7

kubernetes-dashboard

1.10.1-1.1.8.el7

olcne-agent

1.0.7-2.el7

olcne-api-server

1.0.7-2.el7

olcne-nginx

1.0.7-2.el7

olcne-utils

1.0.7-2.el7

olcnectl

1.0.7-2.el7

yq

2.4.0-1.0.5.el7

Связанные CVE

CVE-2020-16845

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2020-16845

CVSS3: 7.5
ubuntu
почти 5 лет назад

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.

redhat логотип

CVE-2020-16845

CVSS3: 7.5
redhat
почти 5 лет назад

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.

nvd логотип

CVE-2020-16845

CVSS3: 7.5
nvd
почти 5 лет назад

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.

msrc логотип

CVE-2020-16845

CVSS3: 7.5
msrc
почти 5 лет назад

Описание отсутствует

debian логотип

CVE-2020-16845

CVSS3: 7.5
debian
почти 5 лет назад

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loo ...

Уязвимость ELSA-2020-5828