Oracle Linux 6277 Published by

A Oracle Linux Cloud Native Environment 1.1 bug fix update has been released for Oracle Linux.



El-errata: ELBA-2020-5816 Oracle Linux Cloud Native Environment 1.1 bug fix update


Oracle Linux Cloud Native Environment Bug Fix Advisory ELBA-2020-5816

  http://linux.oracle.com/errata/ELBA-2020-5816.html

The following updated rpms for Oracle Linux Cloud Native Environment 1.1
have been uploaded to the Unbreakable Linux Network:

x86_64:
olcnectl-1.1.4-1.el7.x86_64.rpm
olcne-utils-1.1.4-1.el7.x86_64.rpm
olcne-nginx-1.1.4-1.el7.x86_64.rpm
olcne-api-server-1.1.4-1.el7.x86_64.rpm
olcne-agent-1.1.4-1.el7.x86_64.rpm
olcne-prometheus-chart-1.1.4-1.el7.x86_64.rpm
olcne-istio-chart-1.1.4-1.el7.x86_64.rpm
kata-1.7.3-1.0.8.el7.x86_64.rpm
kubelet-1.14.9-1.0.7.el7.x86_64.rpm
kubeadm-1.14.9-1.0.7.el7.x86_64.rpm
kubectl-1.14.9-1.0.7.el7.x86_64.rpm
kubelet-1.17.9-1.0.3.el7.x86_64.rpm
kubeadm-1.17.9-1.0.3.el7.x86_64.rpm
kubectl-1.17.9-1.0.3.el7.x86_64.rpm
cri-o-1.17.0-1.0.4.el7.x86_64.rpm
kernel-uek-container-4.14.35-1902.304.6.3.el7.x86_64.rpm

SRPMS:
  http://oss.oracle.com/ol7/SRPMS-updates/olcne-1.1.4-1.el7.src.rpm
  http://oss.oracle.com/ol7/SRPMS-updates/kata-1.7.3-1.0.8.el7.src.rpm
  http://oss.oracle.com/ol7/SRPMS-updates/kubernetes-1.14.9-1.0.7.el7.src.rpm
  http://oss.oracle.com/ol7/SRPMS-updates/kubernetes-1.17.9-1.0.3.el7.src.rpm
  http://oss.oracle.com/ol7/SRPMS-updates/cri-o-1.17.0-1.0.4.el7.src.rpm
  http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-container-4.14.35-1902.304.6.3.el7.src.rpm


Description of changes:

olcne
[1.1.4-1]
- Bump kubernetes RPM due to CVE-2019-20908
- Backport crictl pull vs podman pull fixes from dev

kata
[1.7.3-1.0.8]
- Address CVE-2019-20908

kubernetes
[1.14.9-1.0.7]
- Bump kata for CVE-2019-20908

kubernetes
[1.17.9-1.0.3]
- Bump kata for CVE-2019-20908

cri-o
[1.17.0-1.0.4]
- Fix default cni-plugins dir

kernel-uek-container
[4.14.35-1902.304.6.3.el7]
- Revert "uek-rpm: Move grub boot menu update to posttrans stage."
(Somasundaram
Krishnasamy) [Orabug: 31358100]

[4.14.35-1902.304.6.2.el7]
- certs: Remove Oracle cert compiled into the kernel (Eric Snowberg)
[Orabug: 31668611]
- efi: Restrict efivar_ssdt_load when the kernel is locked down (Matthew
Garrett) [Orabug: 31662729] {CVE-2019-20908}

[4.14.35-1902.304.6.1.el7]
- IB/sa: Resolv use-after-free in ib_nl_make_request()

[4.14.14-2.el7]
- BUILDINFO: commit=6bb6e206facd0c0277275ac8b9e82737380c9040
- Bump release to 4.14.14-2.