SUSE-SU-2018:0748-1: moderate: Security update for kubernetes
sle-security-updates at lists.suse.com
sle-security-updates at lists.suse.com
Tue Mar 20 14:07:07 MDT 2018
SUSE Security Update: Security update for kubernetes
______________________________________________________________________________
Announcement ID: SUSE-SU-2018:0748-1
Rating: moderate
References: #1085007
Cross-References: CVE-2017-1002101
Affected Products:
SUSE CaaS Platform ALL
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update for kubernetes fixes the following issues:
Security issue fixed:
- CVE-2017-1002101: Fixed volume security that could be sidestepped with
innocent emptyDir and subpath (bsc#1085007).
Bug fixes:
- Update to version 1.8.9+3fb1aafdafa3d33bc698930095db1e56c0f76452.
Patch Instructions:
To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE CaaS Platform ALL:
zypper in -t patch SUSE-CAASP-ALL-2018-505=1
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE CaaS Platform ALL (x86_64):
kubernetes-client-1.8.9-11.6.1
kubernetes-common-1.8.9-11.6.1
kubernetes-kubelet-1.8.9-11.6.1
kubernetes-master-1.8.9-11.6.1
kubernetes-node-1.8.9-11.6.1
References:
https://www.suse.com/security/cve/CVE-2017-1002101.html
https://bugzilla.suse.com/1085007
More information about the sle-security-updates
mailing list