Skip to content

@coverprice coverprice released this Feb 21, 2019 · 35 commits to track-1 since this release

Tectonic 1.9.6-tectonic.3 (2019-02-20)

Core Components

  • Updates the Kubelet to address heartbeat failures which cause Pods to be rescheduled erroneously
    • Backports changes from Kubernetes PR #63492 which fixes the logic around the API to kubelet heartbeat connection
  • Updates Docker for security fixes related to the runc escape (CVE CVE-2019-5736)
    • Container Linux machines connected to Tectonic with automated host patching enabled will have already updated to 2051.0.0 (alpha channel), 2023.2.0 (beta channel), and 1967.5.0 (stable channel) with patched Docker versions
    • Docker and runc were installed in a read-only manner that we believe already mitigated the effects of this CVE, but patches have been applied in addition
Assets 4

@coverprice coverprice released this Dec 6, 2018 · 35 commits to track-1 since this release

Tectonic 1.9.6-tectonic.2 (2018-12-06)

Core Components

  • Updates to Kubernetes 1.9.6 with security patches
    • Addresses an unauthorized access vulnerability (CVE-2018-1002105) allowing complete exploitation of all pods running on a compute node to which a pod is scheduled with normal user privilege.
Assets 4

@coverprice coverprice released this Dec 6, 2018 · 46 commits to track-1 since this release

Tectonic 1.8.9-tectonic.4 (2018-12-06)

Core Components

  • Updates to Kubernetes 1.8.9 with security patches
    • Addresses an unauthorized access vulnerability (CVE-2018-1002105) allowing complete exploitation of all pods running on a compute node to which a pod is scheduled with normal user privilege.
Assets 4
You can’t perform that action at this time.