From 530072a38fc2ae0c152da0e48206d7a9dbd3cb19 Mon Sep 17 00:00:00 2001 From: Spencer Peterson Date: Mon, 19 Apr 2021 16:48:55 -0700 Subject: [PATCH] Addon-manager baseimage upgrade debian-base v1.0.1 The previous base image, debian-base:v1.0.0, is affected by CVE-2017-14062. This change upgrades to the most recent Debian stretch image from the following command: ``` $ gcloud container images list-tags k8s.gcr.io/debian-base-amd64 DIGEST TAGS TIMESTAMP 7e9f2f88b813 v1.0.1 2020-02-18T13:18:50 d7be39e143d4 v2.0.0 2019-11-01T13:14:18 5f25d97ece90 v1.0.0 2019-03-25T10:59:09 dddca919baec 1.0.0 2019-03-25T09:43:09 ``` This marks kube-addon-manager version 9.1.5. Change-Id: I02321a781fb19dd33c0a19671b56c0b12d9b52fd --- cluster/addons/addon-manager/CHANGELOG.md | 3 +++ cluster/addons/addon-manager/Makefile | 4 ++-- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/cluster/addons/addon-manager/CHANGELOG.md b/cluster/addons/addon-manager/CHANGELOG.md index 5547246a29a..6d4fa868fef 100644 --- a/cluster/addons/addon-manager/CHANGELOG.md +++ b/cluster/addons/addon-manager/CHANGELOG.md @@ -1,3 +1,6 @@ +### Version 9.1.5 (Mon April 19 2021 Spencer Peterson ) + - Update baseimage to debian-base:v1.0.1. + ### Version 9.1.4 (Wed February 10 2021 Jordan Liggitt ) - Update kubectl to v1.20.2. - Fix a bug in leader election (https://github.com/kubernetes/kubernetes/issues/98966) diff --git a/cluster/addons/addon-manager/Makefile b/cluster/addons/addon-manager/Makefile index 7d892ffcabe..7564048475d 100644 --- a/cluster/addons/addon-manager/Makefile +++ b/cluster/addons/addon-manager/Makefile @@ -15,10 +15,10 @@ IMAGE=gcr.io/k8s-staging-addon-manager/kube-addon-manager ARCH?=amd64 TEMP_DIR:=$(shell mktemp -d) -VERSION=v9.1.4 +VERSION=v9.1.5 KUBECTL_VERSION?=v1.20.2 -BASEIMAGE=k8s.gcr.io/debian-base-$(ARCH):v1.0.0 +BASEIMAGE=k8s.gcr.io/debian-base-$(ARCH):v1.0.1 SUDO=$(if $(filter 0,$(shell id -u)),,sudo)