[ol7_addons] kubectl-1.12.10-1.0.13.el7.x86_64

Command-line utility for interacting with a Kubernetes cluster.

Changelog (Show File list) (Show related packages)

• Wed Jul 15 2020 Thomas Tanaka <thomas.tanaka@orcle.com> - 1.12.10-1.0.13

  - CVE-2020-8559: Privilege escalation from compromised node to cluster
  - CVE-2020-8557: Node disk DOS by writing to container /etc/hosts

• Wed Jun 03 2020 Thomas Tanaka <thomas.tanaka@oracle.com> - 1.12.10-1.0.12

  - CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
  - CVE-2020-8555: Half-Blind SSRF in kube-controller-manager

• Tue Apr 07 2020 Thomas Tanaka <thomas.tanaka@oracle.com> - 1.12.10-1.0.11

  - [CVE-2019-11254] kube-apiserver Denial of Service vulnerability from malicious YAML payloads

• Mon Nov 04 2019 Thomas Tanaka <thomas.tanaka@oracle.com> - 1.12.10-1.0.10

  - [CVE-2019-16276] Kubernetes Vulnerabilities Allow Authentication Bypass, DoS

• Mon Oct 28 2019 Tom Cocozzello <tom.cocozzello@oracle.com> - 1.12.10-1.0.9

  - Define rolling update for flannel

• Mon Oct 21 2019 Tom Cocozzello <tom.cocozzello@oracle.com> - 1.12.10-1.0.8

  - Modify flannel/dashboard image tags to use images that have the cve fix

• Wed Oct 16 2019 Tom Cocozzello <tom.cocozzello@oracle.com> - 1.12.10-1.0.7

  - [CVE-2019-11253] Kubernetes API Server JSON/YAML parsing vulnerable to resource exhaustion attack

• Tue Oct 15 2019 Tom Cocozzello <tom.cocozzello@oracle.com> - 1.12.10-1.0.6

  - [CVE-2019-16276] bump golang to 1.12.10

• Fri Oct 11 2019 Durai G <durai.vattakalvalasu.govindas@oracle.com> - 1.12.10-1.0.5

  - added THIRD_PARTY_LICENSES.txt file

• Thu Sep 26 2019 Michael Calunod <michael.calunod@oracle.com> - 1.12.10-1.0.4

  - fix for CVE-2019-11251