SUSE-SU-2020:3760-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:3760-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2020:3760-1
Related
Published
2020-12-23T08:18:56Z
Modified
2020-12-23T08:18:56Z
Summary
Security changes in Kubernetes, etcd, and helm; Bugfix in cri-o package
Details

= Required Actions

== Kubernetes & etcd (Security fixes)

This fix involves an upgrade of Kubernetes and some add-ons. See https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/clusterupdates.html#updatingkubernetes_components for the upgrade procedure.

== Skuba & helm/helm3

In order to update skuba and helm or helm 3, you need to update the management workstation. See detailed instructions at https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/clusterupdates.html#updatemanagement_workstation

= Known Issues

Modifying the file /etc/sysconfig/kubelet directly is not supported: documentation at https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/miscellaneous.html#configuring_kubelet

Be sure to check the Release Notes at https://www.suse.com/releasenotes/x8664/SUSE-CAASP/4/#changesin424 for any additional known issues or behavioral changes.

References

Affected packages

SUSE:Linux Enterprise Module for Containers 15 SP1 / kubernetes

Package

Name
kubernetes
Purl
purl:rpm/suse/kubernetes&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.17.13-4.21.2

Ecosystem specific

{
    "binaries": [
        {
            "kubernetes-client": "1.17.13-4.21.2",
            "kubernetes-common": "1.17.13-4.21.2"
        }
    ]
}