Описание
ELSA-2021-9268: olcne security update (IMPORTANT)
coredns [1.7.0-1]
- Added Oracle specific build files
cri-o [1.18.4-2]
- Fix for CVE-2021-27918
[1.18.4-1]
- Added Oracle Specifile Files for cri-o
cri-tools [1.18.0-2]
- Address CVE-2021-27918
etcd [3.4.3-1.0.5]
- Address CVE-2021-27918
flannel [0.12.0-2]
- Address CVE-2021-27918
yq [3.4.0-2]
- Address CVE-2021-27918
conmon [2.0.20-4]
- Address CVE-2021-27918
conmon [3:2.0.21-4]
- Address CVE-2021-27918
helm [3.3.4-2]
- Address CVE-2021-27918
kata-proxy [1.11.5-2]
- Address CVE-2021-27918
kata-shim [1.11.5-2]
- Address CVE-2021-27918
kata-runtime [1.11.5-2]
- Address CVE-2021-27918
kata-ksm-throttler [1.11.5-2]
- Address CVE-2021-27918
kata-image [1.11.5-2]
- Address CVE-2021-27918
kata-agent [1.11.5-2]
- Fix for CVE-2021-27918
kata [1.11.5-4]
- Address CVE-2021-27918
[1.11.5-3]
- Support 1.19, 1.20 k8s
kubernetes-cni-plugins [0.8.7-2]
- Removed BuildArch to support ARM builds
kubernetes-cni [0.8.0-3]
- Address CVE-2021-27918
kubernetes-dashboard [2.0.3-2]
- Address CVE-2021-27918
kubernetes [1.18.18-1]
- Address CVE-2021-27918
istio [1.7.3-1.0.2]
- Address CVE-2021-27918
[1.7.3-1.0.1]
- Run gateway pods as root user to workaround ports lessthan 1024 binding failures
[1.7.3-1.0.0]
- Added Oracle Specific Build Files for istio/istio
olcne [1.2.3-9]
- Updated version for istio-module grafana: v6.7.4-3 and prometheus: v2.20.0-1
[1.2.3-8]
- Revert istio version to 1.7.3-1 which has just golang CVE fixes
[1.2.3-7]
- Fix k8s update path
- Update el8 conmon pre-install
[1.2.3-6]
- Updated updatepath in kubernetes.yaml and image version in templates
[1.2.3-5]
- Added missing info for 1.18.18 in kubernetes.yaml and helm.yaml
- Updated image repository in templates
[1.2.3-4]
- Fix for the failure of kubernetes restore [Orabug: 32310718]
[1.2.3-3]
- Address Istio CVE-2021-28683, CVE-2021-28682 & CVE-2021-29258
[1.2.3-2]
- fix bug where externalip cidr's can't fully be disabled
[1.2.3-1]
- Bug Fix: Update istio module definition to pass instance name for release resource
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
kubernetes-cni-plugins
0.8.7-2.el7
Oracle Linux x86_64
conmon
2.0.20-4.el7
conmon
2.0.21-4.el7
coredns
1.7.0-1.el7
cri-o
1.18.4-2.el7
cri-tools
1.18.0-2.el7
etcd
3.4.3-1.0.5.el7
flannel
0.12.0-2.el7
helm
3.3.4-2.el7
istio
1.7.3-1.0.2.el7
istio-istioctl
1.7.3-1.0.2.el7
kata
1.11.5-4.el7
kata-agent
1.11.5-2.el7
kata-image
1.11.5-2.2.ol7_202104281557
kata-ksm-throttler
1.11.5-2.el7
kata-proxy
1.11.5-2.el7
kata-runtime
1.11.5-2.el7
kata-shim
1.11.5-2.el7
kubeadm
1.18.18-2.el7
kubectl
1.18.18-2.el7
kubelet
1.18.18-2.el7
kubernetes-cni
0.8.0-3.el7
kubernetes-cni-plugins
0.8.7-2.el7
kubernetes-dashboard
2.0.3-2.el7
olcne-agent
1.2.3-9.el7
olcne-api-server
1.2.3-9.el7
olcne-istio-chart
1.2.3-9.el7
olcne-nginx
1.2.3-9.el7
olcne-prometheus-chart
1.2.3-9.el7
olcne-utils
1.2.3-9.el7
olcnectl
1.2.3-9.el7
yq
3.4.0-2.el7
Связанные CVE
Связанные уязвимости
encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder) returns EOF in the middle of an element. This can occur in the Decode, DecodeElement, or Skip method.
encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder) returns EOF in the middle of an element. This can occur in the Decode, DecodeElement, or Skip method.
encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder) returns EOF in the middle of an element. This can occur in the Decode, DecodeElement, or Skip method.
encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infin ...