[ELSA-2021-9399] olcne security update

Severity Important

Affected Packages 19

CVEs 6

olcne
[1.3.1-5]
- Updated registry-image-helper.sh to work with olcne-utils

[1.3.1-4]
- Fix istio template for 1.9.6 and 1.10.2 for k8s update failure

[1.3.1-3]
- Added END_VERSION_BLOCK for OLM image

[1.3.1-2]
- Fix iptables issue when running on OL7 host using OL8 image for 1.19.8
- Fix iptables issue when running on OL7 host using OL8 image
- Address Istio CVE's CVE-2021-28683, CVE-2021-28682, CVE-2021-29258, CVE-2021-31920, CVE-2021-31921, CVE-2021-34824
- Fixed yaml file to stop olcne-nginx and keepalived services at uninstall [Orabug: 32296282]
- Fixed missing double semicolon in registry image helper

kubernetes
[1.20.6-2]
- Fix iptables OL7 host kernel issue when running with OL8 image

[1.20.6-1]
- Added Oracle specific build files for Kubernetes

kubernetes
[1.19.8-3]
- Fix iptables issue when running on OL7 host with OL8 image

istio
[1.9.6-2]
- Fix iptables issue when running on OL7 host using OL8 image
- Added istio-mixs and istio-mixc to Obsoletes list

[1.9.6-1]
- Address CVE-2021-28683, CVE-2021-28682, CVE-2021-29258, CVE-2021-31920, CVE-2021-31921, CVE-2021-34824

istio
[1.10.2-2]
- Fix iptables problem when running on OL7 host using OL8 image

[1.10.2-1]
- Address CVE-2021-28683, CVE-2021-28682, CVE-2021-29258, CVE-2021-31920, CVE-2021-31921, CVE-2021-34824

Package	Affected Version
pkg:rpm/oraclelinux/olcnectl?distro=oraclelinux-7	< 1.3.1-5.el7
pkg:rpm/oraclelinux/olcne-utils?distro=oraclelinux-7	< 1.3.1-5.el7
pkg:rpm/oraclelinux/olcne-prometheus-chart?distro=oraclelinux-7	< 1.3.1-5.el7
pkg:rpm/oraclelinux/olcne-olm-chart?distro=oraclelinux-7	< 1.3.1-5.el7
pkg:rpm/oraclelinux/olcne-nginx?distro=oraclelinux-7	< 1.3.1-5.el7
pkg:rpm/oraclelinux/olcne-istio-chart?distro=oraclelinux-7	< 1.3.1-5.el7
pkg:rpm/oraclelinux/olcne-grafana-chart?distro=oraclelinux-7	< 1.3.1-5.el7
pkg:rpm/oraclelinux/olcne-api-server?distro=oraclelinux-7	< 1.3.1-5.el7
pkg:rpm/oraclelinux/olcne-agent?distro=oraclelinux-7	< 1.3.1-5.el7
pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7	< 1.19.8-3.el7
pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7	< 1.20.6-2.el7
pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7	< 1.19.8-3.el7
pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7	< 1.20.6-2.el7
pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7	< 1.19.8-3.el7
pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7	< 1.20.6-2.el7
pkg:rpm/oraclelinux/istio?distro=oraclelinux-7	< 1.10.2-2.el7
pkg:rpm/oraclelinux/istio?distro=oraclelinux-7	< 1.9.6-2.el7
pkg:rpm/oraclelinux/istio-istioctl?distro=oraclelinux-7	< 1.10.2-2.el7
pkg:rpm/oraclelinux/istio-istioctl?distro=oraclelinux-7	< 1.9.6-2.el7

ID

ELSA-2021-9399

Severity

important

URL

https://linux.oracle.com/errata/ELSA-2021-9399.html

Published

2021-08-06T00:00:00
(3 years ago)

Modified

2021-08-06T00:00:00
(3 years ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2021-9399	https://linux.oracle.com/errata/ELSA-2021-9399.html
CVE	CVE-2021-28683	https://linux.oracle.com/cve/CVE-2021-28683.html
CVE	CVE-2021-28682	https://linux.oracle.com/cve/CVE-2021-28682.html
CVE	CVE-2021-31920	https://linux.oracle.com/cve/CVE-2021-31920.html
CVE	CVE-2021-31921	https://linux.oracle.com/cve/CVE-2021-31921.html
CVE	CVE-2021-29258	https://linux.oracle.com/cve/CVE-2021-29258.html
CVE	CVE-2021-34824	https://linux.oracle.com/cve/CVE-2021-34824.html

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:rpm/oraclelinux/olcnectl?distro=oraclelinux-7	oraclelinux	olcnectl	< 1.3.1-5.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-utils?distro=oraclelinux-7	oraclelinux	olcne-utils	< 1.3.1-5.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-prometheus-chart?distro=oraclelinux-7	oraclelinux	olcne-prometheus-chart	< 1.3.1-5.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-olm-chart?distro=oraclelinux-7	oraclelinux	olcne-olm-chart	< 1.3.1-5.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-nginx?distro=oraclelinux-7	oraclelinux	olcne-nginx	< 1.3.1-5.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-istio-chart?distro=oraclelinux-7	oraclelinux	olcne-istio-chart	< 1.3.1-5.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-grafana-chart?distro=oraclelinux-7	oraclelinux	olcne-grafana-chart	< 1.3.1-5.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-api-server?distro=oraclelinux-7	oraclelinux	olcne-api-server	< 1.3.1-5.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/olcne-agent?distro=oraclelinux-7	oraclelinux	olcne-agent	< 1.3.1-5.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7	oraclelinux	kubelet	< 1.19.8-3.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7	oraclelinux	kubelet	< 1.20.6-2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7	oraclelinux	kubectl	< 1.19.8-3.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7	oraclelinux	kubectl	< 1.20.6-2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7	oraclelinux	kubeadm	< 1.19.8-3.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7	oraclelinux	kubeadm	< 1.20.6-2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/istio?distro=oraclelinux-7	oraclelinux	istio	< 1.10.2-2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/istio?distro=oraclelinux-7	oraclelinux	istio	< 1.9.6-2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/istio-istioctl?distro=oraclelinux-7	oraclelinux	istio-istioctl	< 1.10.2-2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/istio-istioctl?distro=oraclelinux-7	oraclelinux	istio-istioctl	< 1.9.6-2.el7	oraclelinux-7

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date