[ELSA-2021-9526] olcne security update
olcne
[1.3.2-2]
- Turn off default PodDisruptionBudget in istio template to unblock kubernetes module upgrade
- Update Kubernetes version to 1.20.11 to address CVE-2021-25741
- Update Istio to 1.9.8, 1.10.4 to address CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781
- Update proxyv2 image to select iptables legacy or latest based on host operating system
- Fix major.minor k8s version
istio
[1.9.8-3]
- Updated iptables-switch for OL8 and OL7 logic
[1.9.8-2]
- Bump release, addresses the following envoy CVEs,
CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781
[1.9.8-1]
- Added Oracle specific files for 1.9.8-1
istio
[1.10.4-3]
- Updated iptables-switch for OL8 and OL7 logic
[1.10.4-2]
- Bump release, addresses the following envoy CVEs,
CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781
[1.10.4-1]
- Added Oracle specific files for 1.10.4-1
kubernetes
[1.20.11-4]
- Fix major.minor version
[1.20.11-3]
- Updated iptables-switch for OL8 and OL7 logic
[1.20.11-2]
- Bump release for CVE fix, addresses CVE-2021-25741
[1.20.11-1]
- Added Oracle specific build files for Kubernetes
- ID
- ELSA-2021-9526
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2021-9526.html
- Published
-
2021-11-09T00:00:00
(2 years ago) - Modified
-
2021-11-09T00:00:00
(2 years ago) - Rights
- Copyright 2021 Oracle, Inc.
- Other Advisories
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2021-9526 | https://linux.oracle.com/errata/ELSA-2021-9526.html | |
CVE | CVE-2021-32777 | https://linux.oracle.com/cve/CVE-2021-32777.html | |
CVE | CVE-2021-32780 | https://linux.oracle.com/cve/CVE-2021-32780.html | |
CVE | CVE-2021-32781 | https://linux.oracle.com/cve/CVE-2021-32781.html | |
CVE | CVE-2021-32779 | https://linux.oracle.com/cve/CVE-2021-32779.html | |
CVE | CVE-2021-25741 | https://linux.oracle.com/cve/CVE-2021-25741.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/olcnectl?distro=oraclelinux-7 | oraclelinux | olcnectl | < 1.3.2-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-utils?distro=oraclelinux-7 | oraclelinux | olcne-utils | < 1.3.2-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-prometheus-chart?distro=oraclelinux-7 | oraclelinux | olcne-prometheus-chart | < 1.3.2-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-olm-chart?distro=oraclelinux-7 | oraclelinux | olcne-olm-chart | < 1.3.2-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-nginx?distro=oraclelinux-7 | oraclelinux | olcne-nginx | < 1.3.2-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-istio-chart?distro=oraclelinux-7 | oraclelinux | olcne-istio-chart | < 1.3.2-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-grafana-chart?distro=oraclelinux-7 | oraclelinux | olcne-grafana-chart | < 1.3.2-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-api-server?distro=oraclelinux-7 | oraclelinux | olcne-api-server | < 1.3.2-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-agent?distro=oraclelinux-7 | oraclelinux | olcne-agent | < 1.3.2-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubelet?distro=oraclelinux-7 | oraclelinux | kubelet | < 1.20.11-4.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubectl?distro=oraclelinux-7 | oraclelinux | kubectl | < 1.20.11-4.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kubeadm?distro=oraclelinux-7 | oraclelinux | kubeadm | < 1.20.11-4.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/istio?distro=oraclelinux-7 | oraclelinux | istio | < 1.9.8-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/istio?distro=oraclelinux-7 | oraclelinux | istio | < 1.10.4-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/istio-istioctl?distro=oraclelinux-7 | oraclelinux | istio-istioctl | < 1.9.8-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/istio-istioctl?distro=oraclelinux-7 | oraclelinux | istio-istioctl | < 1.10.4-3.el7 | oraclelinux-7 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |