{"affected":[{"ecosystem_specific":{"binaries":[{"kubernetes-client":"1.17.13-4.21.2","kubernetes-common":"1.17.13-4.21.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Containers 15 SP1","name":"kubernetes","purl":"pkg:rpm/suse/kubernetes&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.17.13-4.21.2"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":" = Required Actions\n\n== Kubernetes & etcd (Security fixes)\n\nThis fix involves an upgrade of Kubernetes and some add-ons. See https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/_cluster_updates.html#_updating_kubernetes_components for the upgrade procedure.\n   \n== Skuba & helm/helm3\n\nIn order to update skuba and helm or helm 3, you need to update the management workstation. See detailed instructions at https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/_cluster_updates.html#_update_management_workstation\n\n= Known Issues\n\nModifying the file `/etc/sysconfig/kubelet` directly is not supported: documentation at https://documentation.suse.com/suse-caasp/4.2/html/caasp-admin/_miscellaneous.html#_configuring_kubelet\n\nBe sure to check the Release Notes at https://www.suse.com/releasenotes/x86_64/SUSE-CAASP/4/#_changes_in_4_2_4 for any additional known issues or behavioral changes.","id":"SUSE-SU-2020:3760-1","modified":"2020-12-23T08:18:56Z","published":"2020-12-23T08:18:56Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2020/suse-su-20203760-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1174219"},{"type":"REPORT","url":"https://bugzilla.suse.com/1174951"},{"type":"REPORT","url":"https://bugzilla.suse.com/1176752"},{"type":"REPORT","url":"https://bugzilla.suse.com/1176753"},{"type":"REPORT","url":"https://bugzilla.suse.com/1176754"},{"type":"REPORT","url":"https://bugzilla.suse.com/1176755"},{"type":"REPORT","url":"https://bugzilla.suse.com/1177661"},{"type":"REPORT","url":"https://bugzilla.suse.com/1177662"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-15106"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-15112"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-15184"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-15185"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-15186"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-15187"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-8565"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-8566"}],"related":["CVE-2020-15106","CVE-2020-15112","CVE-2020-15184","CVE-2020-15185","CVE-2020-15186","CVE-2020-15187","CVE-2020-8565","CVE-2020-8566"],"summary":"Security changes in Kubernetes, etcd, and helm; Bugfix in cri-o package","upstream":["CVE-2020-15106","CVE-2020-15112","CVE-2020-15184","CVE-2020-15185","CVE-2020-15186","CVE-2020-15187","CVE-2020-8565","CVE-2020-8566"]}