Hello community, here is the log from the commit of package kubernetes for openSUSE:Factory checked in at 2019-08-15 15:42:39 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/kubernetes (Old) and /work/SRC/openSUSE:Factory/.kubernetes.new.9556 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "kubernetes" Thu Aug 15 15:42:39 2019 rev:46 rq:721977 version:1.15.2 Changes: -------- --- /work/SRC/openSUSE:Factory/kubernetes/kubectl.changes 2019-08-07 13:55:12.688856962 +0200 +++ /work/SRC/openSUSE:Factory/.kubernetes.new.9556/kubectl.changes 2019-08-15 15:42:40.515205507 +0200 @@ -97,0 +98,5 @@ +Fri Jan 11 10:00:00 UTC 2019 - Jordi Massaguer Pla <jmassaguer...@suse.com> + +- Previous update to v1.13.2 fixed CVE-2018-18264 and CVE-2018-16875 + +------------------------------------------------------------------- --- /work/SRC/openSUSE:Factory/kubernetes/kubernetes.changes 2019-08-07 13:55:14.184856945 +0200 +++ /work/SRC/openSUSE:Factory/.kubernetes.new.9556/kubernetes.changes 2019-08-15 15:42:40.583205491 +0200 @@ -1,0 +2,16 @@ +Wed Aug 7 09:25:10 UTC 2019 - jmassaguer...@suse.com + +- Relax kubeadm requirements. Kubeadm accepts working with a previous + version of kubelet and this is important for performing upgrades. + + See https://kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade-1-15/ + + +------------------------------------------------------------------- +Wed Aug 7 08:50:41 UTC 2019 - jmassaguer...@suse.com + +- Previous update to version 1.15.2 fixed: + * bsc#1144507: CVE-2019-11249 (incomplete fixes for CVE-2019-1002101 and CVE-2019-11246) + * bsc#1142423: CVE-2019-11247: kubernetes: mistaken allowing access to cluster resources + +------------------------------------------------------------------- @@ -16,0 +33,6 @@ + +------------------------------------------------------------------- +Mon Aug 05 11:50:00 UTC 2019 - jmassaguer...@suse.com + +- Updating to 1.15.1 fixed bsc#1135927 + @@ -191,0 +214,5 @@ +Fri Dec 7 11:12:00 UTC 2018 - Jordi Massaguer <jmassaguer...@suse.com> +- By removing do-not-gc-sle-kubic-images.patch in the previous commit, + we fixed bsc#1111341 (container-feeder no longer used) + +------------------------------------------------------------------- @@ -278,0 +306,6 @@ + +------------------------------------------------------------------- +Wed Aug 01 12:20:00 UTC 2018 - Jordi Massaguer <jmasssaguer...@suse.com> + +- Previous fix (update to version 1.11.1) was including fixes for + bsc#1118198 and bsc#1118260 (CVE-2018-1002105) introduced in version 1.10.11 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ kubernetes.spec ++++++ --- /var/tmp/diff_new_pack.dxJGQ3/_old 2019-08-15 15:42:41.607205254 +0200 +++ /var/tmp/diff_new_pack.dxJGQ3/_new 2019-08-15 15:42:41.607205254 +0200 @@ -178,9 +178,13 @@ Requires: ebtables Requires: ethtool Requires: kubernetes-kubeadm-criconfig -Requires: kubernetes-kubelet = %{version}-%{release} +# Kubeadm 1.15.2 requires kubernetes-kubelet from 1.14.0 to 1.15.2 +# kubeadm accepts the previous version. This is important for performing upgrades +# because we can update kubeadm first, and then kubelet. +Requires: kubernetes-kubelet >= 1.14.0 Requires: socat Requires(pre): shadow +Conflicts: kubernetes-kubelet > %{version}-%{release} Conflicts: cri-tools >= %{maxcriversion} # if master is installed with node, version and release must be the same Conflicts: kubernetes-master < %{version}-%{release}