FEDORA-2020-aeea04cd13 created by jcajka 8 months ago for Fedora 32
stable
  • Security fix for CVE-2020-8551, CVE-2020-8552, CVE-2020-8555, CVE-2020-8945
  • Rebase to head of usptream 3.11 branch

How to install

sudo dnf upgrade --advisory=FEDORA-2020-aeea04cd13

This update has been submitted for testing by jcajka.

8 months ago

This update's test gating status has been changed to 'ignored'.

8 months ago

This update's test gating status has been changed to 'waiting'.

8 months ago

This update's test gating status has been changed to 'ignored'.

8 months ago

This update has been pushed to testing.

8 months ago

This update can be pushed to stable now if the maintainer wishes

8 months ago

This update has been submitted for stable by bodhi.

8 months ago

This update has been pushed to stable.

8 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
8 months ago
in testing
8 months ago
in stable
8 months ago
BZ#1795838 CVE-2020-8945 proglottis/gpgme: Use-after-free in GPGME bindings during container image pull
0
0
BZ#1797909 CVE-2020-8552 kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion
0
0
BZ#1802905 CVE-2020-8945 origin: proglottis/gpgme: Use-after-free in GPGME bindings during container image pull [fedora-all]
0
0
BZ#1816396 CVE-2020-8552 origin: kubernetes: Use of unbounded 'client' label in apiserver_request_total allows for memory exhaustion [fedora-all]
0
0
BZ#1816403 CVE-2020-8551 kubernetes: crafted requests to kubelet API allow for memory exhaustion
0
0
BZ#1816406 CVE-2020-8551 origin: kubernetes: crafted requests to kubelet API allow for memory exhaustion [fedora-all]
0
0
BZ#1821583 CVE-2020-8555 kubernetes: Server side request forgery (SSRF) in kube-controller-manager allows users to leak secret information
0
0
BZ#1842692 CVE-2020-8555 origin: kubernetes: Server side request forgery (SSRF) in kube-controller-manager allows users to leak secret information [fedora-all]
0
0

Automated Test Results