SUSE-RU-2020:2204-1: moderate: Bugfixes on cilium, gangway and skuba and security fix for Kubernetes (cve-2020-8557)

sle-updates at lists.suse.com sle-updates at lists.suse.com
Tue Aug 11 10:16:20 MDT 2020 

   SUSE Recommended Update: Bugfixes on cilium, gangway and skuba and security fix for Kubernetes (cve-2020-8557)
______________________________________________________________________________

Announcement ID:    SUSE-RU-2020:2204-1
Rating:             moderate
References:         #1146991 #1173039 #1173055 #1173165 #1173984 
                    
Affected Products:
                    SUSE Linux Enterprise Module for Containers 15-SP1
                    SUSE CaaS Platform 4.0
______________________________________________________________________________

   An update that solves one vulnerability and has four fixes
   is now available.

Description:

    = Required Actions

   == Kubernetes (Security fix)

   This fix will be applied to the kubelet daemon running on the nodes by
   `skuba-update`. See
   https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/_cluster_upd
   ates.html#_base_os_updates for more details. Make sure you look at the
   Release Notes
   https://www.suse.com/releasenotes/x86_64/SUSE-CAASP/4/#_changes_in_4_2_2
   for any known bug.

   == Cilium Bugfix

   Cilium will be updated by `skuba addon upgrade`. No action is required
   from your side. For more info see
   https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/_cluster_upd
   ates.html#_generating_an_overview_of_available_addon_updates

   == Gangway bugfix

   Gangway will be updated by `skuba addon upgrade`. No action is required
   from your side. For more info see
   https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/_cluster_upd
   ates.html#_generating_an_overview_of_available_addon_updates == Skuba

   In order to update skuba, you need to update the admin workstation. See
   detailed instructions at
   https://documentation.suse.com/suse-caasp/4.1/html/caasp-admin/_cluster_upd
   ates.html#_update_management_workstation


Patch Instructions:

   To install this SUSE Recommended Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Module for Containers 15-SP1:

      zypper in -t patch SUSE-SLE-Module-Containers-15-SP1-2020-2204=1

   - SUSE CaaS Platform 4.0:

      To install this update, use the SUSE CaaS Platform Velum dashboard.
      It will inform you if it detects new updates and let you then trigger
      updating of the complete cluster in a controlled way.



Package List:

   - SUSE Linux Enterprise Module for Containers 15-SP1 (x86_64):

      kubernetes-client-1.17.4-4.18.1
      kubernetes-common-1.17.4-4.18.1

   - SUSE CaaS Platform 4.0 (x86_64):

      caasp-release-4.2.2-24.26.1
      kubernetes-client-1.17.4-4.18.1
      kubernetes-common-1.17.4-4.18.1
      kubernetes-kubeadm-1.17.4-4.18.1
      kubernetes-kubelet-1.17.4-4.18.1
      skuba-1.4.1-3.46.1

   - SUSE CaaS Platform 4.0 (noarch):

      skuba-update-1.4.1-3.46.1


References:

   https://www.suse.com/security/cve/CVE-2020-8557.html
   https://bugzilla.suse.com/1146991
   https://bugzilla.suse.com/1173039
   https://bugzilla.suse.com/1173055
   https://bugzilla.suse.com/1173165
   https://bugzilla.suse.com/1173984

More information about the sle-updates mailing list