[ELSA-2020-5726] grafana kubernetes-cni kubernetes-cni-plugins kubernetes kubernetes olcne security update

Severity Important

Affected Packages 16

CVEs 3

grafana
[%{}-1.0.1]
- Added Oracle Specific Build Files for grafana

kubernetes-cni
[0.7.1-1.0.1]
- Added Oracle specific build files for Kubernetes CNI

kubernetes-cni-plugins
[0.8.6-1.0.1]
- Added Oracle specific build files for Kubernetes CNI Plugins

kubernetes
[1.14.9-1.0.4]
- CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
- CVE-2020-8555: Half-Blind SSRF in kube-controller-manager

[1.14.9-1.0.3]
- [CVE-2019-11254] kube-apiserver Denial of Service vulnerability from malicious YAML payloads

[1.14.9-1.0.2]
- Use bounded crio version

[1.14.9-1.0.1]
- Added Oracle specific build files for Kubernetes

kubernetes
[1.17.6-1.0.2.el7]
- Update to kubernetes-cni for CVE-2020-10749

[1.17.6-1.0.2.el7]
- Added Oracle specific build files for Kubernetes

olcne
[1.1.1-1]
- Update Istio to use Grafana 6.7.4 to address CVE-2020-13379
- Kubernetes update due to CVE-2020-10749 and CVE-2020-8555

Package	Affected Version
pkg:rpm/oraclelinux/olcnectl?distro=oraclelinux-7	< 1.1.1-3.el7
pkg:rpm/oraclelinux/olcne-utils?distro=oraclelinux-7	< 1.1.1-3.el7
pkg:rpm/oraclelinux/olcne-prometheus-chart?distro=oraclelinux-7	< 1.1.1-3.el7
pkg:rpm/oraclelinux/olcne-nginx?distro=oraclelinux-7	< 1.1.1-3.el7
pkg:rpm/oraclelinux/olcne-istio-chart?distro=oraclelinux-7	< 1.1.1-3.el7
pkg:rpm/oraclelinux/olcne-api-server?distro=oraclelinux-7	< 1.1.1-3.el7
pkg:rpm/oraclelinux/olcne-agent?distro=oraclelinux-7	< 1.1.1-3.el7
pkg:rpm/oraclelinux/kubernetes-cni?distro=oraclelinux-7	< 0.7.1-1.0.1.el7
pkg:rpm/oraclelinux/kubernetes-cni-plugins?distro=oraclelinux-7	< 0.8.6-1.0.2.el7
pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7	< 1.14.9-1.0.4.el7
pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7	< 1.17.6-1.0.2.el7
pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7	< 1.14.9-1.0.4.el7
pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7	< 1.17.6-1.0.2.el7
pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7	< 1.14.9-1.0.4.el7
pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7	< 1.17.6-1.0.2.el7
pkg:rpm/oraclelinux/grafana?distro=oraclelinux-7	< 6.7.4-1.0.1.el7

ID

ELSA-2020-5726

Severity

important

URL

https://linux.oracle.com/errata/ELSA-2020-5726.html

Published

2020-06-12T00:00:00
(4 years ago)

Modified

2020-06-12T00:00:00
(4 years ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2020-5726	https://linux.oracle.com/errata/ELSA-2020-5726.html
CVE	CVE-2020-13379	https://linux.oracle.com/cve/CVE-2020-13379.html
CVE	CVE-2020-8555	https://linux.oracle.com/cve/CVE-2020-8555.html
CVE	CVE-2020-10749	https://linux.oracle.com/cve/CVE-2020-10749.html

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:rpm/oraclelinux/olcnectl?distro=oraclelinux-7	oraclelinux	olcnectl	< 1.1.1-3.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-utils?distro=oraclelinux-7	oraclelinux	olcne-utils	< 1.1.1-3.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-prometheus-chart?distro=oraclelinux-7	oraclelinux	olcne-prometheus-chart	< 1.1.1-3.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-nginx?distro=oraclelinux-7	oraclelinux	olcne-nginx	< 1.1.1-3.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-istio-chart?distro=oraclelinux-7	oraclelinux	olcne-istio-chart	< 1.1.1-3.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-api-server?distro=oraclelinux-7	oraclelinux	olcne-api-server	< 1.1.1-3.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-agent?distro=oraclelinux-7	oraclelinux	olcne-agent	< 1.1.1-3.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubernetes-cni?distro=oraclelinux-7	oraclelinux	kubernetes-cni	< 0.7.1-1.0.1.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubernetes-cni-plugins?distro=oraclelinux-7	oraclelinux	kubernetes-cni-plugins	< 0.8.6-1.0.2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7	oraclelinux	kubelet	< 1.14.9-1.0.4.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7	oraclelinux	kubelet	< 1.17.6-1.0.2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7	oraclelinux	kubectl	< 1.14.9-1.0.4.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7	oraclelinux	kubectl	< 1.17.6-1.0.2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7	oraclelinux	kubeadm	< 1.14.9-1.0.4.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7	oraclelinux	kubeadm	< 1.17.6-1.0.2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/grafana?distro=oraclelinux-7	oraclelinux	grafana	< 6.7.4-1.0.1.el7	oraclelinux-7

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date