SUSE-RU-2020:2204-1

Source
https://www.suse.com/support/update/announcement/2020/suse-ru-20202204-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2020:2204-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-RU-2020:2204-1
Related
Published
2020-08-11T12:33:40Z
Modified
2020-08-11T12:33:40Z
Summary
Bugfixes on cilium, gangway and skuba and security fix for Kubernetes (cve-2020-8557)
Details

= Required Actions

== Kubernetes (Security fix)

This fix will be applied to the kubelet daemon running on the nodes by skuba-update. See https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/clusterupdates.html#baseosupdates for more details. Make sure you look at the Release Notes https://www.suse.com/releasenotes/x8664/SUSE-CAASP/4/#changesin42_2 for any known bug.

== Cilium Bugfix

Cilium will be updated by skuba addon upgrade. No action is required from your side. For more info see https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/clusterupdates.html#generatinganoverviewofavailableaddon_updates

== Gangway bugfix

Gangway will be updated by skuba addon upgrade. No action is required from your side. For more info see https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/clusterupdates.html#generatinganoverviewofavailableaddon_updates == Skuba

In order to update skuba, you need to update the admin workstation. See detailed instructions at https://documentation.suse.com/suse-caasp/4.1/html/caasp-admin/clusterupdates.html#updatemanagement_workstation

References

Affected packages

SUSE:Linux Enterprise Module for Containers 15 SP1 / kubernetes

Package

Name
kubernetes
Purl
purl:rpm/suse/kubernetes&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.17.4-4.18.1

Ecosystem specific

{
    "binaries": [
        {
            "kubernetes-client": "1.17.4-4.18.1",
            "kubernetes-common": "1.17.4-4.18.1"
        }
    ]
}