[ELSA-2022-9587] olcne security update
olcne
[1.4.6-2]
- Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over
- Update gen-certs-helper script to skip printing olcne_transfer_script execution
- Cleanup grpc connection when node not found and use substr method in case fqdn used for hostname
[1.4.6-1]
- Adress Istio CVE-2022-31045, CVE-2022-29225, CVE-2022-29224,CVE-2022-29226,CVE-2022-29228,CVE-2022-29227
[1.4.5-1]
- Address qemu CVE-2022-26353, CVE-2021-3748
[1.4.4-1]
- Excluded unnecessary directories from k8s backup files
[1.4.3-1]
- Update Istio to 1.13.2
[1.4.2-1]
- Added 1.4 extra images to registry-image-helper.sh script
[1.4.1-4]
- Ensure that the order of items in an upgraded config file is stable with respect to the original file
- Ensure that old olcnectl config files are upgraded
[1.4.1-3]
- Fixed a bug where specifying a port in the container-registry argument
to the Kubernetes module would result in pods not being able to start.
[1.4.1-2]
- Allow loadbalancer to be configured regardless of security list mode
[1.4.1-1]
- Fix bug in initialising certs manager when environment name not mentioned
[1.4.0-3]
- Fix bug in fetching report for multi-environment
[1.4.0-2]
- Pause image is 3.4.1
[1.4.0-1]
- CSI plugin
- Reports feature
- Kubernetes-1.20.6 to Kubernetes-1.21.6 upgrade
- Istio-1.9.4 to Istio-1.11.4 upgrade
- Component upgrades
- Config file feature
[1.3.0-13]
- Fix iptables issue when running on OL7 host using OL8 image
[1.3.0-12]
- Address CVE's ISTIO-SECURITY-2021-003, ISTIO-SECURITY-2021-005, ISTIO-SECURITY-2021-006, ISTIO-SECURITY-2021-007
[1.3.0-11]
- Fixed yaml file to stop olcne-nginx and keepalived services at uninstall [Orabug: 32296282]
[1.3.0-10]
- Fixed missing double semicolon in registry image helper
[1.3.0-9]
istio
[1.13.5-1]
- Added Oracle specific files for 1.13.5-1
Package | Affected Version |
---|---|
pkg:rpm/oraclelinux/olcnectl?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/olcne-utils?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/olcne-prometheus-chart?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/olcne-olm-chart?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/olcne-oci-csi-chart?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/olcne-nginx?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/olcne-istio-chart?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/olcne-grafana-chart?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/olcne-gluster-chart?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/olcne-api-server?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/olcne-agent?distro=oraclelinux-7 | < 1.4.6-2.el7 |
pkg:rpm/oraclelinux/istio?distro=oraclelinux-7 | < 1.13.5-1.el7 |
pkg:rpm/oraclelinux/istio-istioctl?distro=oraclelinux-7 | < 1.13.5-1.el7 |
- ID
- ELSA-2022-9587
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2022-9587.html
- Published
-
2022-07-11T00:00:00
(2 years ago) - Modified
-
2022-07-11T00:00:00
(2 years ago) - Rights
- Copyright 2022 Oracle, Inc.
- Other Advisories
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2022-9587 | https://linux.oracle.com/errata/ELSA-2022-9587.html | |
CVE | CVE-2022-31045 | https://linux.oracle.com/cve/CVE-2022-31045.html | |
CVE | CVE-2022-29225 | https://linux.oracle.com/cve/CVE-2022-29225.html | |
CVE | CVE-2022-29224 | https://linux.oracle.com/cve/CVE-2022-29224.html | |
CVE | CVE-2022-29228 | https://linux.oracle.com/cve/CVE-2022-29228.html | |
CVE | CVE-2022-29227 | https://linux.oracle.com/cve/CVE-2022-29227.html | |
CVE | CVE-2022-29226 | https://linux.oracle.com/cve/CVE-2022-29226.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/olcnectl?distro=oraclelinux-7 | oraclelinux | olcnectl | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-utils?distro=oraclelinux-7 | oraclelinux | olcne-utils | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-prometheus-chart?distro=oraclelinux-7 | oraclelinux | olcne-prometheus-chart | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-olm-chart?distro=oraclelinux-7 | oraclelinux | olcne-olm-chart | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-oci-csi-chart?distro=oraclelinux-7 | oraclelinux | olcne-oci-csi-chart | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-nginx?distro=oraclelinux-7 | oraclelinux | olcne-nginx | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-istio-chart?distro=oraclelinux-7 | oraclelinux | olcne-istio-chart | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-grafana-chart?distro=oraclelinux-7 | oraclelinux | olcne-grafana-chart | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-gluster-chart?distro=oraclelinux-7 | oraclelinux | olcne-gluster-chart | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-api-server?distro=oraclelinux-7 | oraclelinux | olcne-api-server | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/olcne-agent?distro=oraclelinux-7 | oraclelinux | olcne-agent | < 1.4.6-2.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/istio?distro=oraclelinux-7 | oraclelinux | istio | < 1.13.5-1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/istio-istioctl?distro=oraclelinux-7 | oraclelinux | istio-istioctl | < 1.13.5-1.el7 | oraclelinux-7 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |