Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump Cillium version to 1.13.8 and 1.14.3 #12761

Merged
merged 1 commit into from
Oct 24, 2023
Merged

Bump Cillium version to 1.13.8 and 1.14.3 #12761

merged 1 commit into from
Oct 24, 2023

Conversation

cnvergence
Copy link
Member

@cnvergence cnvergence commented Oct 20, 2023
edited

What this PR does / why we need it:

Bump Cilium CNI to 1.13.8 and 1.14.3.
Major fix to HTTP/2 "Rapid Reset" DoS Vulnerability(CVE-2023-44487)

What type of PR is this?

/kind chore

Does this PR introduce a user-facing change? Then add your Release Note here:

Add support for Cilium 1.14.3 and 1.13.8, mitigating an high CVE-2023-44487

Documentation:

NONE

@cnvergence
Bump Cillium version to 1.13.8 and 1.14.3
4b0800d 
Signed-off-by: Karol Szwaj <karol@kubermatic.com>
@kubermatic-bot kubermatic-bot added release-note Denotes a PR that will be considered when it comes time to generate release notes. kind/chore Updating grunt tasks etc; no production code changes. dco-signoff: yes Denotes that all commits in the pull request have the valid DCO signoff message. do-not-merge/docs-needed Indicates that a PR should not merge because it's missing one of the documentation labels. sig/networking Denotes a PR or issue as being assigned to SIG Networking. do-not-merge/code-freeze Indicates that a PR should not merge because it has not been approved for code freeze yet. size/M Denotes a PR that changes 30-99 lines, ignoring generated files. docs/none Denotes a PR that doesn't need documentation (changes). and removed do-not-merge/docs-needed Indicates that a PR should not merge because it's missing one of the documentation labels. labels Oct 20, 2023
@embik
Copy link
Member

embik commented Oct 20, 2023

Helm charts for 1.14.3 and 1.13.8 need to be pushed to our quay mirror via pkg/cni/cilium/cilium-mirror-chart.sh.

@cnvergence
Copy link
Member Author

/retest

@embik embik added this to the KKP 2.24 milestone Oct 20, 2023
@cnvergence
Copy link
Member Author

/retest

@cnvergence cnvergence self-assigned this Oct 23, 2023
@kubermatic-bot kubermatic-bot added the lgtm Indicates that a PR is ready to be merged. label Oct 24, 2023
@kubermatic-bot
Copy link
Contributor

LGTM label has been added.

Git tree hash: e3b28d6222a5667f3479fb082743a50ccd02177d

moadqassem
moadqassem approved these changes Oct 24, 2023
View reviewed changes
Copy link
Member

@moadqassem moadqassem left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/approve
/lgtm

@kubermatic-bot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: moadqassem

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@kubermatic-bot kubermatic-bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Oct 24, 2023
@embik embik added the code-freeze-approved Indicates a PR has been approved by release managers during code freeze. label Oct 24, 2023
@kubermatic-bot kubermatic-bot removed the do-not-merge/code-freeze Indicates that a PR should not merge because it has not been approved for code freeze yet. label Oct 24, 2023
@kubermatic-bot kubermatic-bot merged commit 89a0602 into kubermatic:main Oct 24, 2023
19 checks passed
@cnvergence cnvergence deleted the upgrade-cillium-1.13.8 branch October 25, 2023 10:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@moadqassem moadqassem moadqassem approved these changes

@ahmedwaleedmalik ahmedwaleedmalik ahmedwaleedmalik approved these changes

Assignees

@moadqassem moadqassem

@ahmedwaleedmalik ahmedwaleedmalik

@cnvergence cnvergence

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. code-freeze-approved Indicates a PR has been approved by release managers during code freeze. dco-signoff: yes Denotes that all commits in the pull request have the valid DCO signoff message. docs/none Denotes a PR that doesn't need documentation (changes). kind/chore Updating grunt tasks etc; no production code changes. lgtm Indicates that a PR is ready to be merged. release-note Denotes a PR that will be considered when it comes time to generate release notes. sig/networking Denotes a PR or issue as being assigned to SIG Networking. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.
Projects
None yet
Milestone
KKP 2.24
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@cnvergence @embik @kubermatic-bot @moadqassem @ahmedwaleedmalik