Kubernetes v1.16.13, v1.17.9 and v1.18.6 are now available in Rancher to address following CVEs:
- CVE-2020-8557 - Node disk DOS by writing to container /etc/hosts
- CVE-2020-8558 - Node setting allows for neighboring hosts to bypass localhost boundary
- CVE-2020-8559 - Privilege escalation from compromised node to cluster
Please review Upgrading Kubernetes without Upgrading Rancher for more details.
Note: If you are an air gapped user, please review the documentation on how to get these versions