The description and installation procedures for the fixes for patch 08 are provided.
Patch details for wsl-v1231-x86-patch-08
This patch includes the following fix:
- Resolves attack vectors related to the use of symbolic links.
WSL 18.104.22.168 x86 patch07 must all be installed. To download patch 08, go to Fix Central and select wsl-x86-v1231-patch08. Previous patches are also available in Fix Central.
The patch contains the following file: wsl-x86-v1231-patch08.tgz
- Identify the docker registry that is used by the cluster by running
You must change the commands based on the docker registry that is used by the installation. Change the following docker commands to use the docker registry used by the cluster.
- Authenticate to kubectl.
- Authenticate to docker.
- If you want to roll back the patch, run the following docker image commands and note the key
values of the images:
and note the value of the image key.
kubectl get deploy -n dsx dsx-core -o yaml | grep image:
Installing the patch
To install the dsx-core image patch
- Open the dsx-core image by running
A directory that is called dsx-core-artifact is created and contains files.
tar xzvf wsl-x86-v1231-patch08.tgz
- Run the command
- Run the command
to load the image to the docker registry.
docker load < dsx-core_v3.13.1406-x86_64.tar.gz
to tag the image.
docker tag a6f8c09c6dab idp-registry.sysibm-adm.svc.cluster.local:31006/dsx-core:v3.13.1406-x86_64_v1231-patch08
to push the image to the docker registry.
docker push idp-registry.sysibm-adm.svc.cluster.local:31006/dsx-core:v3.13.1406-x86_64_v1231-patch08
kubectl -n dsx edit deploy dsx-core
- Look for the image key, and then change the value to
Rolling back the patch
and then look for the image key. Change the key to the value noted in the Pre-installation section, step 1a.
kubectl edit deploy -n dsx dsx-core