github k3s-io/k3s v1.16.10+k3s1

latest releases: v1.31.2+k3s1, v1.30.6+k3s1, v1.29.10+k3s1...
4 years ago

This release addresses the following upstream CVEs:

  • CVE-2020-10749 - IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
  • CVE-2020-8555 - kube-controller-manager SSRF

These CVEs are described in more detail in this issue.

Changes since v1.16.9:

Helpful Links

As always, we welcome and appreciate feedback from our community of users. Please feel free to:

Don't miss a new k3s release

NewReleases is sending notifications on new releases.