SUSE-SU-2020:3760-1
Vulnerability Summary
Timeline
Description
Security changes in Kubernetes, etcd, and helm; Bugfix in cri-o package = Required Actions == Kubernetes & etcd (Security fixes) This fix involves an upgrade of Kubernetes and some add-ons. See https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/_cluster_updates.html#_updating_kubernetes_components for the upgrade procedure. == Skuba & helm/helm3 In order to update skuba and helm or helm 3, you need to update the management workstation. See detailed instructions at https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/_cluster_updates.html#_update_management_workstation = Known Issues Modifying the file `/etc/sysconfig/kubelet` directly is not supported: documentation at https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/_miscellaneous.html#_configuring_kubelet Be sure to check the Release Notes at https://www.suse.com/releasenotes/x86_64/SUSE-CAASP/4/#_changes_in_4_2_4 for any additional known issues or behavioral changes.
Affected Systems
- suse•kubernetes&distro=SUSE Linux Enterprise Module for Containers 15 SP1
< 1.17.13-4.21.2
References (17)
- https://www.suse.com/support/update/announcement/2020/suse-su-20203760-1/
- https://bugzilla.suse.com/1174219
- https://bugzilla.suse.com/1174951
- https://bugzilla.suse.com/1176752
- https://bugzilla.suse.com/1176753
- https://bugzilla.suse.com/1176754
- https://bugzilla.suse.com/1176755
- https://bugzilla.suse.com/1177661
- https://bugzilla.suse.com/1177662
- https://www.suse.com/security/cve/CVE-2020-15106
- https://www.suse.com/security/cve/CVE-2020-15112
- https://www.suse.com/security/cve/CVE-2020-15184
- https://www.suse.com/security/cve/CVE-2020-15185
- https://www.suse.com/security/cve/CVE-2020-15186
- https://www.suse.com/security/cve/CVE-2020-15187
- https://www.suse.com/security/cve/CVE-2020-8565
- https://www.suse.com/security/cve/CVE-2020-8566