[ELSA-2020-5726] grafana kubernetes-cni kubernetes-cni-plugins kubernetes kubernetes olcne security update
grafana
[%{}-1.0.1]
- Added Oracle Specific Build Files for grafana
kubernetes-cni
[0.7.1-1.0.1]
- Added Oracle specific build files for Kubernetes CNI
kubernetes-cni-plugins
[0.8.6-1.0.1]
- Added Oracle specific build files for Kubernetes CNI Plugins
kubernetes
[1.14.9-1.0.4]
- CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
- CVE-2020-8555: Half-Blind SSRF in kube-controller-manager
[1.14.9-1.0.3]
- [CVE-2019-11254] kube-apiserver Denial of Service vulnerability from malicious YAML payloads
[1.14.9-1.0.2]
- Use bounded crio version
[1.14.9-1.0.1]
- Added Oracle specific build files for Kubernetes
kubernetes
[1.17.6-1.0.2.el7]
- Update to kubernetes-cni for CVE-2020-10749
[1.17.6-1.0.2.el7]
- Added Oracle specific build files for Kubernetes
olcne
[1.1.1-1]
- Update Istio to use Grafana 6.7.4 to address CVE-2020-13379
- Kubernetes update due to CVE-2020-10749 and CVE-2020-8555
- ID
- ELSA-2020-5726
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2020-5726.html
- Published
-
2020-06-12T00:00:00
(4 years ago) - Modified
-
2020-06-12T00:00:00
(4 years ago) - Rights
- Copyright 2020 Oracle, Inc.
- Other Advisories
-
- ALPINE:CVE-2020-10749
- ALPINE:CVE-2020-13379
- ALPINE:CVE-2020-8555
- ALSA-2020:4694
- ELSA-2020-2641
- ELSA-2020-5725
- ELSA-2020-5727
- FEDORA-2020-a09e5be0be
- FEDORA-2020-aeea04cd13
- FEDORA-2020-e6e81a03d6
- FEDORA-2021-ccb8a9c403
- openSUSE-SU-2020:0892-1
- openSUSE-SU-2020:1049-1
- openSUSE-SU-2020:1050-1
- openSUSE-SU-2020:1105-1
- openSUSE-SU-2020:1611-1
- openSUSE-SU-2020:1646-1
- RHSA-2020:2641
- RHSA-2020:4694
- RLSA-2020:4694
- SUSE-SU-2020:1715-1
- SUSE-SU-2020:1718-1
- SUSE-SU-2020:1901-1
- SUSE-SU-2020:1957-1
- SUSE-SU-2020:1970-1
- SUSE-SU-2020:1972-1
- SUSE-SU-2020:2911-1
- SUSE-SU-2021:1233-1
- SUSE-SU-2021:1962-1
- SUSE-SU-2022:4151-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2020-5726 | https://linux.oracle.com/errata/ELSA-2020-5726.html | |
CVE | CVE-2020-13379 | https://linux.oracle.com/cve/CVE-2020-13379.html | |
CVE | CVE-2020-8555 | https://linux.oracle.com/cve/CVE-2020-8555.html | |
CVE | CVE-2020-10749 | https://linux.oracle.com/cve/CVE-2020-10749.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/olcnectl?distro=oraclelinux-7 | oraclelinux | olcnectl | < 1.1.1-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-utils?distro=oraclelinux-7 | oraclelinux | olcne-utils | < 1.1.1-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-prometheus-chart?distro=oraclelinux-7 | oraclelinux | olcne-prometheus-chart | < 1.1.1-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-nginx?distro=oraclelinux-7 | oraclelinux | olcne-nginx | < 1.1.1-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-istio-chart?distro=oraclelinux-7 | oraclelinux | olcne-istio-chart | < 1.1.1-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-api-server?distro=oraclelinux-7 | oraclelinux | olcne-api-server | < 1.1.1-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-agent?distro=oraclelinux-7 | oraclelinux | olcne-agent | < 1.1.1-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubernetes-cni?distro=oraclelinux-7 | oraclelinux | kubernetes-cni | < 0.7.1-1.0.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubernetes-cni-plugins?distro=oraclelinux-7 | oraclelinux | kubernetes-cni-plugins | < 0.8.6-1.0.2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7 | oraclelinux | kubelet | < 1.14.9-1.0.4.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7 | oraclelinux | kubelet | < 1.17.6-1.0.2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7 | oraclelinux | kubectl | < 1.14.9-1.0.4.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7 | oraclelinux | kubectl | < 1.17.6-1.0.2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7 | oraclelinux | kubeadm | < 1.14.9-1.0.4.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7 | oraclelinux | kubeadm | < 1.17.6-1.0.2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/grafana?distro=oraclelinux-7 | oraclelinux | grafana | < 6.7.4-1.0.1.el7 | oraclelinux-7 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |