Kubernetes v1.16.13, v1.17.9 and v1.18.6 are now available in Rancher to address following CVEs:
- CVE-2020-8557 - Node disk DOS by writing to container /etc/hosts
- CVE-2020-8558 - Node setting allows for neighboring hosts to bypass localhost boundary
- CVE-2020-8559 - Privilege escalation from compromised node to cluster
Please review Upgrading Kubernetes without Upgrading Rancher for more details.
Rancher 2.4.5:
v1.18.6-rancher1-1
v1.17.9-rancher1-1
v1.16.13-rancher1-1
Rancher 2.4.4:
v1.17.9-rancher1-1
v1.16.13-rancher1-1
Rancher 2.3.8:
v1.17.9-rancher1-1
v1.16.13-rancher1-1
Note: If you are an air gapped user, please review the documentation on how to get these versions