Uploaded image for project: 'ONAP Operations Manager'
  1. ONAP Operations Manager
  2. OOM-1539

CVE-2018-1002105: proxy request handling in kube-apiserver can leave vulnerable TCP connections · Issue #71411 · kubernetes/kubernetes · GitHub

    XMLWordPrintable

    Details

    • Sprint:
      Casablanca-3.0.1 (12/01-01/29)

      Description

      K8S issue:

      https://github.com/kubernetes/kubernetes/issues/71411

      Casablanca recommendations are :

      https://onap.readthedocs.io/en/casablanca/guides/onap-developer/settingup/index.html#requirements

       i.e. 1.11.2

      It seems there is a fix for this in 1.11.5 (a minor upgrade)

       Verified via LOG-895

      upgrade from 1.6.22 to 1.6.25 to move to kubernetes 1.11.3/1.11.5

      Kubernetes 1.11.5 (server only) in Rancher 1.6.25 has the same fix as kubernetes 1.12.3 for https://github.com/kubernetes/kubernetes/issues/71411

       

        Attachments

          Issue Links

          No reviews matched the request. Check your Options in the drop-down menu of this sections header.

            Activity

              People

              Assignee:
              melliott Mike Elliott
              Reporter:
              Katel34 Catherine Lefevre
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: