[ELSA-2021-9029] olcne security update
Severity
Important
Affected Packages
12
CVEs
2
kata-runtime
[1.7.3-1.0.7]
- Address CVE-2020-28914
kata
[1.7.3-1.0.12]
- UEKR6 guest kernel support
[1.7.3-1.0.11]
- Address CVE-2020-28914
kubernetes
[1.17.9-1.0.6]
- Kata CVE-2020-28914
olcne
[1.1.10-1]
- Address CVE-2020-28914: An improper file permissions vulnerability affects Kata Containers prior to 1.11.5
[1.1.9-1]
- Enhance the Kubernetes module to restrict the usage of external IPs
- Address CVE-2020-8554: man-in-the-middle vulnerability using Kubernetes service External IPs
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/olcnectl?distro=oraclelinux-7
|
< 1.1.10-1.el7 |
|
pkg:rpm/oraclelinux/olcne-utils?distro=oraclelinux-7
|
< 1.1.10-1.el7 |
|
pkg:rpm/oraclelinux/olcne-prometheus-chart?distro=oraclelinux-7
|
< 1.1.10-1.el7 |
|
pkg:rpm/oraclelinux/olcne-nginx?distro=oraclelinux-7
|
< 1.1.10-1.el7 |
|
pkg:rpm/oraclelinux/olcne-istio-chart?distro=oraclelinux-7
|
< 1.1.10-1.el7 |
|
pkg:rpm/oraclelinux/olcne-api-server?distro=oraclelinux-7
|
< 1.1.10-1.el7 |
|
pkg:rpm/oraclelinux/olcne-agent?distro=oraclelinux-7
|
< 1.1.10-1.el7 |
|
pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7
|
< 1.17.9-1.0.6.el7 |
|
pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7
|
< 1.17.9-1.0.6.el7 |
|
pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7
|
< 1.17.9-1.0.6.el7 |
|
pkg:rpm/oraclelinux/kata?distro=oraclelinux-7
|
< 1.7.3-1.0.12.el7 |
|
pkg:rpm/oraclelinux/kata-runtime?distro=oraclelinux-7
|
< 1.7.3-1.0.7.el7 |
- ID
- ELSA-2021-9029
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2021-9029.html
- Published
-
2021-02-10T00:00:00
(3 years ago) - Modified
-
2021-02-10T00:00:00
(3 years ago) - Rights
- Copyright 2021 Oracle, Inc.
- Other Advisories
MS:CVE-2020-8554| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2021-9029 |
|
|
| CVE | CVE-2020-28914 |
|
|
| CVE | CVE-2020-8554 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/olcnectl?distro=oraclelinux-7 | oraclelinux |
olcnectl
|
< 1.1.10-1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/olcne-utils?distro=oraclelinux-7 | oraclelinux |
olcne-utils
|
< 1.1.10-1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/olcne-prometheus-chart?distro=oraclelinux-7 | oraclelinux |
olcne-prometheus-chart
|
< 1.1.10-1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/olcne-nginx?distro=oraclelinux-7 | oraclelinux |
olcne-nginx
|
< 1.1.10-1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/olcne-istio-chart?distro=oraclelinux-7 | oraclelinux |
olcne-istio-chart
|
< 1.1.10-1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/olcne-api-server?distro=oraclelinux-7 | oraclelinux |
olcne-api-server
|
< 1.1.10-1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/olcne-agent?distro=oraclelinux-7 | oraclelinux |
olcne-agent
|
< 1.1.10-1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7 | oraclelinux |
kubelet
|
< 1.17.9-1.0.6.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7 | oraclelinux |
kubectl
|
< 1.17.9-1.0.6.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7 | oraclelinux |
kubeadm
|
< 1.17.9-1.0.6.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kata?distro=oraclelinux-7 | oraclelinux |
kata
|
< 1.7.3-1.0.12.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kata-runtime?distro=oraclelinux-7 | oraclelinux |
kata-runtime
|
< 1.7.3-1.0.7.el7 | oraclelinux-7 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |