openSUSE-SU-2019:1703-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2019:1703-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/openSUSE-SU-2019:1703-1
- Related
- Published
- 2019-07-14T06:24:35Z
- Modified
- 2019-07-14T06:24:35Z
- Summary
- Security update for helm
- Details
-
This update for helm to version 2.13.1 fixes the following issues:
- set correct git_commit value so that 'helm version' reports correctly
- added service file for helm-serve
- Require golang 1.10.6 or newer
- Tiller should only enforce what we expect from Helm
- Keepalive config should be independent of TLS
- Bump client side grpc max msg size
- Update deprecated grpc dial timeout
- Includes fixes which allow Helm to correctly recognize resources created using the K8S 1.8/1.9 API namespaces
- References
-
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JECNV3BMXBNMPC6CIX5BMOAPGIHSNLAI/#JECNV3BMXBNMPC6CIX5BMOAPGIHSNLAI
- https://bugzilla.suse.com/1118897
- https://bugzilla.suse.com/1118898
- https://bugzilla.suse.com/1118899
- https://www.suse.com/security/cve/CVE-2018-16873
- https://www.suse.com/security/cve/CVE-2018-16874
- https://www.suse.com/security/cve/CVE-2018-16875