Описание
ELSA-2021-9397: olcne security update (IMPORTANT)
olcne [1.2.4-5]
- Updated registry-image-helper.sh to work with olcne-utils
[1.2.4-4]
- Fix istio template for 1.9.6 for k8s update failure
[1.2.4-3]
- Fixed yaml file to stop olcne-nginx and keepalived services at uninstall [Orabug: 32296282]
[1.2.4-2]
- Fix iptables issue when running on OL7 host using OL8 image
[1.2.4-1]
- Address Istio CVE's CVE-2021-28683, CVE-2021-28682, CVE-2021-29258, CVE-2021-31920, CVE-2021-31921, CVE-2021-34824
istio [1.9.6-2]
- Fix iptables issue when running on OL7 host using OL8 image
- Added istio-mixs and istio-mixc to Obsoletes list
[1.9.6-1]
- Address CVE-2021-28683, CVE-2021-28682, CVE-2021-29258, CVE-2021-31920, CVE-2021-31921, CVE-2021-34824
kubernetes [1.18.18-3]
- Fix iptables OL7 host kernel issue when running with OL8 image
[1.18.18-1]
- Address CVE-2021-27918
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
istio
1.9.6-2.el7
istio-istioctl
1.9.6-2.el7
kubeadm
1.18.18-3.el7
kubectl
1.18.18-3.el7
kubelet
1.18.18-3.el7
olcne-agent
1.2.4-5.el7
olcne-api-server
1.2.4-5.el7
olcne-istio-chart
1.2.4-5.el7
olcne-nginx
1.2.4-5.el7
olcne-prometheus-chart
1.2.4-5.el7
olcne-utils
1.2.4-5.el7
olcnectl
1.2.4-5.el7
Ссылки на источники
Связанные уязвимости
An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable integer overflow in which a very large grpc-timeout value leads to unexpected timeout calculations.
An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable integer overflow in which a very large grpc-timeout value leads to unexpected timeout calculations.