From 92793ebcc3c2d6bd81da17dc82281f3c2ed531da Mon Sep 17 00:00:00 2001 From: paurosello Date: Thu, 4 Jul 2024 14:57:31 +0200 Subject: [PATCH] Release 19.3.5 (#1302) * release 19.3.5 * changelog * Update README.md * Update README.md * Create announcement.md --------- Co-authored-by: Tobiasz Kukawka --- README.md | 1 + aws/kustomization.yaml | 1 + aws/v19.3.5/README.md | 21 ++++ aws/v19.3.5/announcement.md | 3 + aws/v19.3.5/kustomization.yaml | 2 + aws/v19.3.5/release.diff | 187 +++++++++++++++++++++++++++++++++ aws/v19.3.5/release.yaml | 187 +++++++++++++++++++++++++++++++++ 7 files changed, 402 insertions(+) create mode 100644 aws/v19.3.5/README.md create mode 100644 aws/v19.3.5/announcement.md create mode 100644 aws/v19.3.5/kustomization.yaml create mode 100644 aws/v19.3.5/release.diff create mode 100644 aws/v19.3.5/release.yaml diff --git a/README.md b/README.md index e07fac5ed..a4b6c46fa 100644 --- a/README.md +++ b/README.md @@ -20,6 +20,7 @@ to all Giant Swarm installations. - [v20.0.0](https://github.com/giantswarm/releases/tree/master/aws/archived/v20.0.0) - v19 - v19.3 + - [v19.3.5](https://github.com/giantswarm/releases/tree/master/aws/v19.3.5) - [v19.3.4](https://github.com/giantswarm/releases/tree/master/aws/v19.3.4) - [v19.3.3](https://github.com/giantswarm/releases/tree/master/aws/archived/v19.3.3) - [v19.3.2](https://github.com/giantswarm/releases/tree/master/aws/archived/v19.3.2) diff --git a/aws/kustomization.yaml b/aws/kustomization.yaml index 3357d2699..1361b400e 100644 --- a/aws/kustomization.yaml +++ b/aws/kustomization.yaml @@ -9,6 +9,7 @@ resources: - v19.2.1 - v19.3.1 - v19.3.4 +- v19.3.5 - v20.1.0 - v20.1.1 - v20.1.2 diff --git a/aws/v19.3.5/README.md b/aws/v19.3.5/README.md new file mode 100644 index 000000000..8383e034a --- /dev/null +++ b/aws/v19.3.5/README.md @@ -0,0 +1,21 @@ +# :zap: Giant Swarm Release v19.3.5 for AWS :zap: + +This is a security release featuring latest version of Flatcar Container Linux with major CVE fix for OpenSSH [CVE-2024-6387](https://nvd.nist.gov/vuln/detail/CVE-2024-6387). Upgrade to this release will result in nodes rollout. + +## Change details + + +### containerlinux [3815.2.5](https://www.flatcar-linux.org/releases/#release-3815.2.5) + + _Changes since **Stable 3815.2.4**_ + + #### Security fixes: + + - openssh ([CVE-2024-6387](https://nvd.nist.gov/vuln/detail/CVE-2024-6387)) + + #### Updates: + + - Linux ([6.1.96](https://lwn.net/Articles/979851)) + - openssh ([9.7_p1](https://www.openssh.com/txt/release-9.7)) + + diff --git a/aws/v19.3.5/announcement.md b/aws/v19.3.5/announcement.md new file mode 100644 index 000000000..1144acf63 --- /dev/null +++ b/aws/v19.3.5/announcement.md @@ -0,0 +1,3 @@ +**Workload cluster release v19.3.5 for AWS is available**. This is a security release featuring latest version of Flatcar Container Linux with major CVE fix for OpenSSH [CVE-2024-6387](https://nvd.nist.gov/vuln/detail/CVE-2024-6387). Upgrade to this release will result in nodes rollout. +Further details can be found in the [release notes](https://docs.giantswarm.io/changes/workload-cluster-releases-aws/releases/aws-v19.3.5/). + diff --git a/aws/v19.3.5/kustomization.yaml b/aws/v19.3.5/kustomization.yaml new file mode 100644 index 000000000..2c64a5163 --- /dev/null +++ b/aws/v19.3.5/kustomization.yaml @@ -0,0 +1,2 @@ +resources: +- release.yaml diff --git a/aws/v19.3.5/release.diff b/aws/v19.3.5/release.diff new file mode 100644 index 000000000..1e30287e5 --- /dev/null +++ b/aws/v19.3.5/release.diff @@ -0,0 +1,187 @@ +# Generated with: # Generated with: +# devctl release create --base 19.3.3 --name 19.3.4 --overwrit | # devctl release create --base 19.3.4 --name 19.3.5 --overwrit +apiVersion: release.giantswarm.io/v1alpha1 apiVersion: release.giantswarm.io/v1alpha1 +kind: Release kind: Release +metadata: metadata: + annotations: annotations: + giantswarm.io/docs: https://docs.giantswarm.io/reference/c giantswarm.io/docs: https://docs.giantswarm.io/reference/c + creationTimestamp: null creationTimestamp: null + name: v19.3.4 | name: v19.3.5 +spec: spec: + apps: apps: + - componentVersion: 1.24.1 - componentVersion: 1.24.1 + dependsOn: dependsOn: + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: aws-cloud-controller-manager name: aws-cloud-controller-manager + version: 1.24.1-gs10 version: 1.24.1-gs10 + - componentVersion: 1.21.0 - componentVersion: 1.21.0 + dependsOn: dependsOn: + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: aws-ebs-csi-driver name: aws-ebs-csi-driver + version: 2.28.0 version: 2.28.0 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: cert-exporter name: cert-exporter + version: 2.8.4 version: 2.8.4 + - componentVersion: 1.12.4 - componentVersion: 1.12.4 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: cert-manager name: cert-manager + version: 2.25.2 version: 2.25.2 + - name: chart-operator - name: chart-operator + version: 3.1.1 version: 3.1.1 + - dependsOn: - dependsOn: + - prometheus-operator-crd - prometheus-operator-crd + name: chart-operator-extensions name: chart-operator-extensions + version: 1.1.1 version: 1.1.1 + - componentVersion: 1.13.6 - componentVersion: 1.13.6 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + name: cilium name: cilium + version: 0.17.0 version: 0.17.0 + - componentVersion: 1.24.3 - componentVersion: 1.24.3 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: cluster-autoscaler name: cluster-autoscaler + version: 1.24.3-gs4 version: 1.24.3-gs4 + - componentVersion: 1.11.1 - componentVersion: 1.11.1 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + name: coredns name: coredns + version: 1.20.0 version: 1.20.0 + - componentVersion: 0.11.0 - componentVersion: 0.11.0 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: external-dns name: external-dns + version: 3.0.0 version: 3.0.0 + - componentVersion: 0.6.4 - componentVersion: 0.6.4 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: metrics-server name: metrics-server + version: 2.4.1 version: 2.4.1 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: net-exporter name: net-exporter + version: 1.18.2 version: 1.18.2 + - componentVersion: 1.3.1 - componentVersion: 1.3.1 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: node-exporter name: node-exporter + version: 1.18.1 version: 1.18.1 + - componentVersion: 0.14.0 - componentVersion: 0.14.0 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: vertical-pod-autoscaler name: vertical-pod-autoscaler + version: 4.6.0 version: 4.6.0 + - name: vertical-pod-autoscaler-crd - name: vertical-pod-autoscaler-crd + version: 2.0.1 version: 2.0.1 + - dependsOn: - dependsOn: + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: etcd-kubernetes-resources-count-exporter name: etcd-kubernetes-resources-count-exporter + version: 1.8.0 version: 1.8.0 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + name: observability-bundle name: observability-bundle + version: 0.10.1 version: 0.10.1 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - kyverno - kyverno + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: k8s-dns-node-cache-app name: k8s-dns-node-cache-app + version: 2.5.0 version: 2.5.0 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - kyverno - kyverno + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: prometheus-blackbox-exporter name: prometheus-blackbox-exporter + version: 0.4.0 version: 0.4.0 + - dependsOn: - dependsOn: + - prometheus-operator-crd - prometheus-operator-crd + name: cilium-servicemonitors name: cilium-servicemonitors + version: 0.1.2 version: 0.1.2 + - dependsOn: - dependsOn: + - prometheus-operator-crd - prometheus-operator-crd + name: irsa-servicemonitors name: irsa-servicemonitors + version: 0.0.1 version: 0.0.1 + - catalog: giantswarm - catalog: giantswarm + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: security-bundle name: security-bundle + version: 1.6.3 version: 1.6.3 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - kyverno - kyverno + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: k8s-audit-metrics name: k8s-audit-metrics + version: 0.8.0 version: 0.8.0 + components: components: + - name: app-operator - name: app-operator + version: 6.10.2 version: 6.10.2 + - name: aws-operator - name: aws-operator + releaseOperatorDeploy: true releaseOperatorDeploy: true + version: 15.1.0 version: 15.1.0 + - name: cert-operator - name: cert-operator + reference: 3.2.1-patch1 reference: 3.2.1-patch1 + releaseOperatorDeploy: true releaseOperatorDeploy: true + version: 3.2.1 version: 3.2.1 + - name: cluster-operator - name: cluster-operator + reference: 5.10.0-patch1 reference: 5.10.0-patch1 + releaseOperatorDeploy: true releaseOperatorDeploy: true + version: 5.10.0 version: 5.10.0 + - name: containerlinux - name: containerlinux + version: 3815.2.2 | version: 3815.2.5 + - name: etcd - name: etcd + version: 3.5.11 version: 3.5.11 + - name: kubernetes - name: kubernetes + version: 1.24.17 version: 1.24.17 + date: "2024-04-29T07:14:42Z" | date: "2024-07-03T07:59:04Z" + state: active state: active +status: status: + inUse: false inUse: false + ready: false ready: false diff --git a/aws/v19.3.5/release.yaml b/aws/v19.3.5/release.yaml new file mode 100644 index 000000000..54dfa71e1 --- /dev/null +++ b/aws/v19.3.5/release.yaml @@ -0,0 +1,187 @@ +# Generated with: +# devctl release create --base 19.3.4 --name 19.3.5 --overwrite --provider aws --component containerlinux@3815.2.5 +apiVersion: release.giantswarm.io/v1alpha1 +kind: Release +metadata: + annotations: + giantswarm.io/docs: https://docs.giantswarm.io/reference/cp-k8s-api/releases.release.giantswarm.io/ + creationTimestamp: null + name: v19.3.5 +spec: + apps: + - componentVersion: 1.24.1 + dependsOn: + - vertical-pod-autoscaler-crd + name: aws-cloud-controller-manager + version: 1.24.1-gs10 + - componentVersion: 1.21.0 + dependsOn: + - vertical-pod-autoscaler-crd + name: aws-ebs-csi-driver + version: 2.28.0 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: cert-exporter + version: 2.8.4 + - componentVersion: 1.12.4 + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: cert-manager + version: 2.25.2 + - name: chart-operator + version: 3.1.1 + - dependsOn: + - prometheus-operator-crd + name: chart-operator-extensions + version: 1.1.1 + - componentVersion: 1.13.6 + dependsOn: + - aws-cloud-controller-manager + name: cilium + version: 0.17.0 + - componentVersion: 1.24.3 + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - vertical-pod-autoscaler-crd + name: cluster-autoscaler + version: 1.24.3-gs4 + - componentVersion: 1.11.1 + dependsOn: + - aws-cloud-controller-manager + - cilium + name: coredns + version: 1.20.0 + - componentVersion: 0.11.0 + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: external-dns + version: 3.0.0 + - componentVersion: 0.6.4 + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: metrics-server + version: 2.4.1 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: net-exporter + version: 1.18.2 + - componentVersion: 1.3.1 + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: node-exporter + version: 1.18.1 + - componentVersion: 0.14.0 + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: vertical-pod-autoscaler + version: 4.6.0 + - name: vertical-pod-autoscaler-crd + version: 2.0.1 + - dependsOn: + - vertical-pod-autoscaler-crd + name: etcd-kubernetes-resources-count-exporter + version: 1.8.0 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + name: observability-bundle + version: 0.10.1 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - kyverno + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: k8s-dns-node-cache-app + version: 2.5.0 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - kyverno + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: prometheus-blackbox-exporter + version: 0.4.0 + - dependsOn: + - prometheus-operator-crd + name: cilium-servicemonitors + version: 0.1.2 + - dependsOn: + - prometheus-operator-crd + name: irsa-servicemonitors + version: 0.0.1 + - catalog: giantswarm + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: security-bundle + version: 1.6.3 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - kyverno + - vertical-pod-autoscaler-crd + name: k8s-audit-metrics + version: 0.8.0 + components: + - name: app-operator + version: 6.10.2 + - name: aws-operator + releaseOperatorDeploy: true + version: 15.1.0 + - name: cert-operator + reference: 3.2.1-patch1 + releaseOperatorDeploy: true + version: 3.2.1 + - name: cluster-operator + reference: 5.10.0-patch1 + releaseOperatorDeploy: true + version: 5.10.0 + - name: containerlinux + version: 3815.2.5 + - name: etcd + version: 3.5.11 + - name: kubernetes + version: 1.24.17 + date: "2024-07-03T07:59:04Z" + state: active +status: + inUse: false + ready: false