An update for kubernetes is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2022-1979 Final 1.0 1.0 2022-10-14 Initial 2022-10-14 2022-10-14 openEuler SA Tool V1.0 2022-10-14 kubernetes security update An update for kubernetes is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS. Container cluster management. Security Fix(es): A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. This could lead to the client performing unexpected actions as well as forwarding the client's API server credentials to third parties. ref: https://github.com/kubernetes/kubernetes/issues/112513(CVE-2022-3172) An update for kubernetes is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS. openEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Medium kubernetes https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1979 https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2022-3172 https://nvd.nist.gov/vuln/detail/CVE-2022-3172 openEuler-20.03-LTS-SP1 openEuler-20.03-LTS-SP3 openEuler-22.03-LTS kubernetes-kubelet-1.20.2-9.oe1.aarch64.rpm kubernetes-kubeadm-1.20.2-9.oe1.aarch64.rpm kubernetes-client-1.20.2-9.oe1.aarch64.rpm kubernetes-1.20.2-9.oe1.aarch64.rpm kubernetes-node-1.20.2-9.oe1.aarch64.rpm kubernetes-help-1.20.2-9.oe1.aarch64.rpm kubernetes-master-1.20.2-9.oe1.aarch64.rpm kubernetes-kubeadm-1.20.2-9.oe1.aarch64.rpm kubernetes-kubelet-1.20.2-9.oe1.aarch64.rpm kubernetes-1.20.2-9.oe1.aarch64.rpm kubernetes-client-1.20.2-9.oe1.aarch64.rpm kubernetes-help-1.20.2-9.oe1.aarch64.rpm kubernetes-node-1.20.2-9.oe1.aarch64.rpm kubernetes-master-1.20.2-9.oe1.aarch64.rpm kubernetes-help-1.20.2-9.oe2203.aarch64.rpm kubernetes-kubelet-1.20.2-9.oe2203.aarch64.rpm kubernetes-node-1.20.2-9.oe2203.aarch64.rpm kubernetes-client-1.20.2-9.oe2203.aarch64.rpm kubernetes-kubeadm-1.20.2-9.oe2203.aarch64.rpm kubernetes-master-1.20.2-9.oe2203.aarch64.rpm kubernetes-1.20.2-9.oe2203.aarch64.rpm kubernetes-1.20.2-9.oe1.src.rpm kubernetes-1.20.2-9.oe1.src.rpm kubernetes-1.20.2-9.oe2203.src.rpm kubernetes-node-1.20.2-9.oe1.x86_64.rpm kubernetes-client-1.20.2-9.oe1.x86_64.rpm kubernetes-kubelet-1.20.2-9.oe1.x86_64.rpm kubernetes-kubeadm-1.20.2-9.oe1.x86_64.rpm kubernetes-help-1.20.2-9.oe1.x86_64.rpm kubernetes-master-1.20.2-9.oe1.x86_64.rpm kubernetes-1.20.2-9.oe1.x86_64.rpm kubernetes-1.20.2-9.oe1.x86_64.rpm kubernetes-help-1.20.2-9.oe1.x86_64.rpm kubernetes-kubeadm-1.20.2-9.oe1.x86_64.rpm kubernetes-master-1.20.2-9.oe1.x86_64.rpm kubernetes-node-1.20.2-9.oe1.x86_64.rpm kubernetes-client-1.20.2-9.oe1.x86_64.rpm kubernetes-kubelet-1.20.2-9.oe1.x86_64.rpm kubernetes-1.20.2-9.oe2203.x86_64.rpm kubernetes-kubelet-1.20.2-9.oe2203.x86_64.rpm kubernetes-kubeadm-1.20.2-9.oe2203.x86_64.rpm kubernetes-master-1.20.2-9.oe2203.x86_64.rpm kubernetes-node-1.20.2-9.oe2203.x86_64.rpm kubernetes-help-1.20.2-9.oe2203.x86_64.rpm kubernetes-client-1.20.2-9.oe2203.x86_64.rpm A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. This could lead to theclient performing unexpected actions as well as forwarding the client s API server credentials to third parties.ref: https://github.com/kubernetes/kubernetes/issues/112513 2022-10-14 CVE-2022-3172 openEuler-20.03-LTS-SP1 openEuler-20.03-LTS-SP3 openEuler-22.03-LTS Medium 5.1 AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L kubernetes security update 2022-10-14 https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1979