- Issued:
- 2016-03-02
- Updated:
- 2016-03-02
RHBA-2016:0335 - Bug Fix Advisory
Synopsis
Red Hat Enterprise Linux Atomic Kubernetes apiserver Container Image Update
Type/Severity
Bug Fix Advisory
Topic
An updated Red Hat Enterprise Linux Atomic Kubernetes apiserver container image is now available for Red Hat Enterprise Linux Atomic Host.
Description
The Red Hat Enterprise Linux Atomic Kubernetes apiserver container image provides the Kubernetes API. It is intended to be a CRUD-y server, with most or all business logic implemented in separate components or in plug-ins. It mainly processes REST operations, validates them, and updates the corresponding objects in etcd.
The image in this update includes the OpenSSL fix for CVE-2016-0800. For
more details, see https://access.redhat.com/security/vulnerabilities/drown.
This update includes the following image:
rhel7/kubernetes-apiserver
All users who require the Red Hat Enterprise Linux Atomic Kubernetes apiserver container are advised to install this updated container image.
Solution
The Red Hat Enterprise Linux container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com using the "docker pull" command. Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.
Affected Products
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Enterprise Linux Server from RHUI 7 x86_64
Fixes
- BZ - 1313518 - Rebase kubernetes-apiserver-docker in RHEL Extras 7.2.2
CVEs
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.