ESB-2018.1105 - [RedHat] Kubernetes: Reduced security - Unknown/unspecified 2018-04-11

Printable version
PGP/GPG verifiable version

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2018.1105
        Low: Kubernetes in the Extras channel - deprecation notice
                               11 April 2018

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           Kubernetes
Publisher:         Red Hat
Operating System:  Red Hat Enterprise Linux Server 7
                   Red Hat Enterprise Linux WS/Desktop 7
Impact/Access:     Reduced Security -- Unknown/Unspecified
Resolution:        Alternate Program

Original Bulletin: 
   https://access.redhat.com/errata/RHSA-2018:1072

- --------------------------BEGIN INCLUDED TEXT--------------------

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=====================================================================
                   Red Hat Security Advisory

Synopsis:          Low: Kubernetes in the Extras channel - deprecation notice
Advisory ID:       RHSA-2018:1072-01
Product:           Red Hat Enterprise Linux Extras
Advisory URL:      https://access.redhat.com/errata/RHSA-2018:1072
Issue date:        2018-04-10
=====================================================================

1. Summary:

Kubernetes and its dependencies have been deprecated in the Red Hat
Enterprise Linux 7 Extras channel.

2. Description:

The kubernetes packages provide utilities for container cluster management.

Kubernetes and its dependencies will no longer be updated through the
Extras channel. Instead, the Red Hat customers are advised to use Red Hat's
supported Kubernetes-based products such as Red Hat OpenShift Container
Platform.

Components impacted by this change include the following deprecated
Kubernetes RPM packages, images, and associated documentation:

RPM Packages:

* kubernetes
* kubernetes-devel
* kubernetes-client
* kubernetes-master
* kubernetes-node
* kubernetes-unit-test
* cadvisor

Container Images:

* registry.access.redhat.com/rhel7/kubernetes-apiserver
* registry.access.redhat.com/rhel7/kubernetes-controller-mgr
* registry.access.redhat.com/rhel7/kubernetes-scheduler

Documentation:

* The "Getting Started with Kubernetes" guide linked from the References
section.

Additional information and guidance are provided in the Red Hat Enterprise
Linux Atomic Host 7.5 Release Notes linked from the References section.

3. Solution:

Red Hat OpenShift Container Platform will continue to provide Red Hatâ\x{128}\x{153}s
enterprise distribution of Kubernetes.

4. Bugs fixed (https://bugzilla.redhat.com/):

1549101 - Kubernetes support is moving from Red Hat Enterprise Linux to OpenShift Container Platform

5. References:

https://access.redhat.com/security/updates/classification/#low
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux_atomic_host/7/html-single/getting_started_with_kubernetes/
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux_atomic_host/7/html-single/release_notes/#red_hat_enterprise_linux_atomic_host_7_5_0

6. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2018 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iD8DBQFazImGXlSAg2UNWIIRAo+GAKCTr2o1eOZktXL061xZyoStpjh5jACfT0WM
u8Tic6PVbUgYUHBXdUAMWQY=
=FXsD
- -----END PGP SIGNATURE-----

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=gysL
-----END PGP SIGNATURE-----

« Back to bulletins