Lucene search
OracleLinuxELSA-2020-5827HistoryAug 31, 2020 - 12:00 a.m.
olcne conmon coredns cri-o cri-tools etcd flannel grafana helm istio kata kata-agent kata-image kata-ksm-throttler kata-proxy kata-runtime kata-shim kubernetes kubernetes-cni kubernetes-cni-plugins kubernetes-dashboard prometheus yq security update
2020-08-3100:00:00
linux.oracle.com
73
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
olcne
[1.1.5-2]
- kubernetes pod subnet flag not honored in flannel configuration
[1.1.5-1] - Address CVE-2020-16845
conmon
[2.0.10-3] - Address CVE-2020-16845
coredns
[1.6.5-1.0.3] - Address CVE-2020-16845
cri-o
[1.17.0-1.0.5] - Address CVE-2020-16845
cri-tools
[1.17.0-1.0.2] - Address CVE-2020-16845
[1.17.0-1.0.1] - Added Oracle Specific Build Files for cri-tools
etcd
[3.4.3-1.0.2] - Address CVE-2020-16845
flannel
[0.10.0-2.1.12] - Address CVE-2020-16845
[0.10.0-2.1.11] - Resize flannel image
[0.10.0-2.1.10] - Fix image location
grafana
[6.7.4-1.0.2] - Address CVE-2020-16845
helm
[3.1.1-1.0.2] - Address CVE-2020-16845
istio
[1.4.10-1.0.2] - CVE-2020-16845
encoding/binary: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs
kata
[1.7.3-1.0.9] - Address CVE-2020-16845
kata-agent
[1.7.3-1.0.6] - Address CVE-2020-16845
kata-image
[1.7.3-1.0.6.1] - Address CVE-2020-16845
kata-ksm-throttler
[1.7.3-1.0.5] - Address CVE-2020-16845
kata-proxy
[1.7.3-1.0.5] - Address CVE-2020-16845
kata-runtime
[1.7.3-1.0.6] - Address CVE-2020-16845
kata-shim
[1.7.3-1.0.5] - Address CVE-2020-16845
kubernetes
[1.17.9-1.0.5] - Pin min version of components
[1.17.9-1.0.4] - Address CVE-2020-16845
kubernetes-cni
[0.7.1-1.0.3] - Pin min version of cni-plugins
[0.7.1-1.0.2] - Address CVE-2020-16845
kubernetes-cni-plugins
[0.8.6-1.0.3] - Address CVE-2020-16845
kubernetes-dashboard
[2.0.0-1.0.2] - Address CVE-2020-16845
prometheus
[2.13.1-1.0.3] - Address CVE-2020-16845
yq
[2.4.0-1.0.5] - Address CVE-2020-16845
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | conmon | < 2.0.10-3.el7 | conmon-2.0.10-3.el7.src.rpm |
| oracle linux | 7 | src | coredns | < 1.6.5-1.0.3.el7 | coredns-1.6.5-1.0.3.el7.src.rpm |
| oracle linux | 7 | src | cri-o | < 1.17.0-1.0.5.el7 | cri-o-1.17.0-1.0.5.el7.src.rpm |
| oracle linux | 7 | src | cri-tools | < 1.17.0-1.0.2.el7 | cri-tools-1.17.0-1.0.2.el7.src.rpm |
| oracle linux | 7 | src | etcd | < 3.4.3-1.0.2.el7 | etcd-3.4.3-1.0.2.el7.src.rpm |
| oracle linux | 7 | src | flannel | < 0.10.0-2.1.12.el7 | flannel-0.10.0-2.1.12.el7.src.rpm |
| oracle linux | 7 | src | grafana | < 6.7.4-1.0.2.el7 | grafana-6.7.4-1.0.2.el7.src.rpm |
| oracle linux | 7 | src | helm | < 3.1.1-1.0.2.el7 | helm-3.1.1-1.0.2.el7.src.rpm |
| oracle linux | 7 | src | istio | < 1.4.10-1.0.2.el7 | istio-1.4.10-1.0.2.el7.src.rpm |
| oracle linux | 7 | src | kata | < 1.7.3-1.0.9.el7 | kata-1.7.3-1.0.9.el7.src.rpm |
Related
suse
suse
Security update for go1.13 (moderate)
2020-08-11 00:00:00
Security update for go1.13 (moderate)
2020-08-12 00:00:00
Security update for go1.14 (important)
2020-09-11 00:00:00
ibm
ibm
oraclelinux
oraclelinux
kubernetes kubeadm-ha-setup kubernetes-cni kubernetes-cni-plugins security update
2020-08-24 00:00:00
go-toolset:ol8 security update
2020-09-11 00:00:00
nessus
nessus
RHEL 8 : OpenShift Container Platform 4.6.6 (RHSA-2020:5159)
2020-11-30 00:00:00
Photon OS 3.0: Go PHSA-2020-3.0-0130
2020-09-01 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0276
2020-08-25 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0316
2020-08-25 00:00:00
Important Photon OS Security Update - PHSA-2020-0316
2020-08-25 00:00:00
osv
osv
GO-2021-0225
2022-01-13 03:44:52
CVE-2020-16845
2020-08-06 18:15:13
BIT-golang-2020-16845
2024-03-06 11:08:08
redhat
redhat
fedora
fedora
[SECURITY] Fedora 32 Update: golang-github-ulikunitz-xz-0.5.8-1.fc32
2020-08-28 14:55:45
[SECURITY] Fedora 31 Update: golang-1.13.15-1.fc31
2020-09-09 14:20:25
[SECURITY] Fedora 31 Update: golang-github-ulikunitz-xz-0.5.8-1.fc31
2020-08-28 14:58:12
altlinux
altlinux
Security fix for the ALT Linux 10 package golang version 1.14.7-alt1
2020-08-10 00:00:00
Security fix for the ALT Linux 9 package golang version 1.14.7-alt1
2020-08-19 00:00:00
cve
cve
CVE-2020-16845
2020-08-06 18:15:00
CVE-2021-29482
2021-04-28 19:15:00
openvas
openvas
Fedora: Security Advisory for golang (FEDORA-2020-b190375a37)
2020-09-10 00:00:00
Ubuntu: Security Advisory (USN-5725-2)
2023-05-24 00:00:00
prion
prion
Design/Logic Flaw
2020-08-06 18:15:00
Format string
2021-04-28 19:15:00
veracode
veracode
Denial Of Service (DoS)
2020-08-13 04:32:40
freebsd
freebsd
ubuntucve
ubuntucve
CVE-2020-16845
2020-08-06 00:00:00
CVE-2021-29482
2021-04-28 00:00:00
github
github
Infinite loop in xz
2021-12-16 19:16:40
github.com/ulikunitz/xz fixes readUvarint denial of service
2021-05-25 18:39:37
debiancve
debiancve
CVE-2020-16845
2020-08-06 18:15:00
CVE-2021-29482
2021-04-28 19:15:00
cbl_mariner
cbl_mariner
CVE-2020-16845 affecting package golang 1.13.11-
2021-07-08 21:56:48
alpinelinux
alpinelinux
CVE-2020-16845
2020-08-06 18:15:00
redhatcve
redhatcve
CVE-2020-16845
2022-05-14 11:32:38
ubuntu
ubuntu
Go vulnerability
2023-05-23 00:00:00
Go vulnerability
2022-11-15 00:00:00
debian
debian
[SECURITY] [DLA 2459-1] golang-1.7 security update
2020-11-21 16:15:56
[SECURITY] [DLA 2460-1] golang-1.8 security update
2020-11-21 16:41:04
[SECURITY] [DSA 4848-1] golang-1.11 security update
2021-02-08 21:24:09
amazon
amazon
Medium: golang
2020-10-26 18:04:00
Medium: golang
2020-09-28 20:57:00
mageia
mageia
Updated golang packages fix security vulnerability
2020-08-18 20:41:27
oracle
oracle
Oracle Critical Patch Update Advisory - April 2021
2021-04-20 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related for ELSA-2020-5827