An update for kubernetes is now available for openEuler-22.03-LTS-SP1 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2023-1020 Final 1.0 1.0 2023-01-06 Initial 2023-01-06 2023-01-06 openEuler SA Tool V1.0 2023-01-06 kubernetes security update An update for kubernetes is now available for openEuler-22.03-LTS-SP1. Container cluster management. Security Fix(es): kubectl does not neutralize escape, meta or control sequences contained in the raw data it outputs to a terminal. This includes but is not limited to the unstructured string fields in objects such as Events.(CVE-2021-25743) An update for kubernetes is now available for openEuler-22.03-LTS-SP1. openEuler Security has rated this update as having a security impact of low. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Low kubernetes https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2023-1020 https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2021-25743 https://nvd.nist.gov/vuln/detail/CVE-2021-25743 openEuler-22.03-LTS-SP1 kubernetes-1.20.2-16.oe2203sp1.aarch64.rpm kubernetes-client-1.20.2-16.oe2203sp1.aarch64.rpm kubernetes-help-1.20.2-16.oe2203sp1.aarch64.rpm kubernetes-master-1.20.2-16.oe2203sp1.aarch64.rpm kubernetes-node-1.20.2-16.oe2203sp1.aarch64.rpm kubernetes-kubelet-1.20.2-16.oe2203sp1.aarch64.rpm kubernetes-kubeadm-1.20.2-16.oe2203sp1.aarch64.rpm kubernetes-1.20.2-16.oe2203sp1.src.rpm kubernetes-client-1.20.2-16.oe2203sp1.x86_64.rpm kubernetes-kubelet-1.20.2-16.oe2203sp1.x86_64.rpm kubernetes-node-1.20.2-16.oe2203sp1.x86_64.rpm kubernetes-1.20.2-16.oe2203sp1.x86_64.rpm kubernetes-help-1.20.2-16.oe2203sp1.x86_64.rpm kubernetes-master-1.20.2-16.oe2203sp1.x86_64.rpm kubernetes-kubeadm-1.20.2-16.oe2203sp1.x86_64.rpm kubectl does not neutralize escape, meta or control sequences contained in the raw data it outputs to a terminal. This includes but is not limited to the unstructured string fields in objects such as Events. 2023-01-06 CVE-2021-25743 openEuler-22.03-LTS-SP1 Low 3.0 AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N kubernetes security update 2023-01-06 https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2023-1020