- Issued:
- 2016-02-16
- Updated:
- 2016-02-16
RHBA-2016:0184 - Bug Fix Advisory
Synopsis
kubernetes bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated kubernetes packages that fix several bugs and add various enhancements are now available for Red Hat Enterprise Linux 7 Extras.
Description
The kubernetes packages provide container cluster management.
This update fixes the following bugs:
- Capabilities to open port 443 for the kube-apiserver binary have been added to the kubernetes-master package. (BZ#1275379)
- The /usr/bin/kube-apiserver file had incorrectly set permissions and as a consequence, the kube-apiserver service failed to start. This bugs has been fixed and kube-apiserver now starts as expected. (BZ#1295545)
Additionally, this update also introduces the following enhancements:
- The kubernetes packages are now built from the OpenShift Enterprise source code. This change improves the stability and continuous integration of kubernetes. Also, the kubernetes packages now include support for debug info. And, internal pod infrastructure container is now used (registry.access.redhat.com/rhel7/pod-infrastructure:latest) (BZ#1295357)
- Previously, some pods occasionally remained in "Terminating" state for significantly long time after being deleted. This bug has been fixed and the pods are now deleted as expected. (BZ#1271198)
- The "/etc/kubernetes/config" file contained a typo in the "KUBE_ALLOW_PRIV" option. The "--allow_privileged" option has been renamed to the correct "--allow-privileged". (BZ#1289762)
- This update introduces the "--legacy-userspace-proxy=false" option to resolve the high CPU usage of kube-proxy. (BZ#1293718)
Users of kubernetes are advised to upgrade to these updated packages, which fix these bugs and add these enhancements.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Enterprise Linux Server from RHUI 7 x86_64
Fixes
- BZ - 1271198 - Some pods stay in Terminating state after deleting.
- BZ - 1275379 - kubernetes apiserver missing capabilities to open port 443
- BZ - 1289762 - /etc/kubernetes/config has typo for privileged containers option
- BZ - 1295357 - Build kubernetes for AH 7.2.2
CVEs
(none)
Red Hat Enterprise Linux Server 7
SRPM | |
---|---|
kubernetes-1.2.0-0.6.alpha1.git8632732.el7.src.rpm | SHA-256: 6bd3266d428635c0a7f5c42f0b586e017658995cfaf4fc64c1ee5538c71fa9ff |
x86_64 | |
kubernetes-1.2.0-0.6.alpha1.git8632732.el7.x86_64.rpm | SHA-256: 1e33edc698e50acc6af6263e98b3cfc05708c3b6e47cbfb62323cb2471082bd2 |
kubernetes-client-1.2.0-0.6.alpha1.git8632732.el7.x86_64.rpm | SHA-256: 6702061dee057efa0c2997b9e4089103b1cfef21ec7729ce6107d7aed7929542 |
kubernetes-debuginfo-1.2.0-0.6.alpha1.git8632732.el7.x86_64.rpm | SHA-256: 56de04e9249a02d6036a05ba300b92844305c9b85876891103f2028a459d1a3b |
kubernetes-master-1.2.0-0.6.alpha1.git8632732.el7.x86_64.rpm | SHA-256: bd7e42f989945ed1a94fa265a152ce2f127cbee332baf59acb5f0cd0a1c53a0f |
kubernetes-node-1.2.0-0.6.alpha1.git8632732.el7.x86_64.rpm | SHA-256: d865dee3b31713910cfa410974c371400022c0838570565b38224f803916e621 |
Red Hat Enterprise Linux Server from RHUI 7
SRPM | |
---|---|
kubernetes-1.2.0-0.6.alpha1.git8632732.el7.src.rpm | SHA-256: 6bd3266d428635c0a7f5c42f0b586e017658995cfaf4fc64c1ee5538c71fa9ff |
x86_64 | |
kubernetes-1.2.0-0.6.alpha1.git8632732.el7.x86_64.rpm | SHA-256: 1e33edc698e50acc6af6263e98b3cfc05708c3b6e47cbfb62323cb2471082bd2 |
kubernetes-client-1.2.0-0.6.alpha1.git8632732.el7.x86_64.rpm | SHA-256: 6702061dee057efa0c2997b9e4089103b1cfef21ec7729ce6107d7aed7929542 |
kubernetes-debuginfo-1.2.0-0.6.alpha1.git8632732.el7.x86_64.rpm | SHA-256: 56de04e9249a02d6036a05ba300b92844305c9b85876891103f2028a459d1a3b |
kubernetes-master-1.2.0-0.6.alpha1.git8632732.el7.x86_64.rpm | SHA-256: bd7e42f989945ed1a94fa265a152ce2f127cbee332baf59acb5f0cd0a1c53a0f |
kubernetes-node-1.2.0-0.6.alpha1.git8632732.el7.x86_64.rpm | SHA-256: d865dee3b31713910cfa410974c371400022c0838570565b38224f803916e621 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.