A flaw has been detected in Kubernetes which allows privilege escalation and access to sensitive information in all Kubernetes deployments, including Tectonic. This vulnerability existed in all versions of Kubernetes since 1.2. Vulnerable versions of Tectonic Platform allow for complete exploitation of all pods running on a compute node to which a pod is scheduled with normal user privilege.
As the year comes to a close, Kubernetes contributors, our engineers included, have been hard at work to bring you the final release of 2018: Kubernetes 1.13. In recognition of the achievements the community has made this year, and the looming holiday season, we shift our focuses towards presenting this work to the world at large.
Today, we celebrate this week’s release of Kubernetes 1.12, which brings a lot of incremental feature enhancements and bug fixes across the release that help close issues encountered by enterprises adopting modern containerized systems. Each release cycle, we’re frequently asked about the theme of the release. There are always exciting enhancements to highlight, but an important theme to note is trust and stability.
Prometheus - transforming monitoring over the years
August 09, 2018 • By Frederic Branczyk
Today we extend our appreciation to the teams who created Prometheus, the cloud native monitoring project, and look ahead to reflect on the future of the project.
Celebrating Istio service mesh project at 1.0 and what it means for the Kubernetes community
July 31, 2018 • By Brian Redbeard
Today we are excited to share with the community that Istio has achieved the milestone of hitting 1.0. In 2016 work began on Istio to provide an answer to the growing need for a service mesh within cloud native environments.
Happy birthday, Kubernetes: Here’s to three years of collaborative innovation
July 23, 2018 • By Joe Fernandes
Three years ago the community celebrated the first production-ready release of Kubernetes, what is now a de facto standard system for container orchestration, at the 1.0 launch day at OSCON. Today we celebrate Kubernetes to not only acknowledge it on the project’s birthday but to also thank the community for the extensive work and collaboration to drive the project forward.
Kubernetes 1.11: Custom Resources, Pod Priority and Preemption, and more
June 26, 2018 • By Stephen Augustus
As we continue our work in upstream Kubernetes development to enable it for the community and enterprises alike, we’d like to celebrate the upcoming delivery of Kubernetes 1.11 expected this week.
Fedora CoreOS, Red Hat CoreOS, and the future of Container Linux
June 22, 2018 • By Benjamin Gilbert
In recent months, we've talked about our plans for Red Hat CoreOS, the new immutable, container-centric operating system bringing automated operations to Red Hat OpenShift. This week, the Fedora project announced the official launch of the Fedora CoreOS project, a new open source community effort under the Fedora banner.
The Operator Metering project is now available
June 07, 2018 • By Christian Vogel We recently open sourced the Operator Framework and today we’re happy to share the next milestone: Operator Metering. Operator Metering is designed to help you gain more knowledge about the usage and costs to run and manage Kubernetes native applications (Operators). This joins the other Operator Framework components – SDK and Lifecycle Management – that are a part of the Operator Framework family, an open source toolkit designed to manage Operators in a more effective, automated, and scalable way. Read more...
Bringing CoreOS technology to Red Hat OpenShift to deliver a next-generation automated Kubernetes platform
May 08, 2018 • By Reza Shafii
In the months since CoreOS was acquired by Red Hat, we’ve been building on our vision of helping companies achieve greater operational efficiency through automation. Today at Red Hat Summit we’ve outlined our roadmap for how we plan to integrate the projects and technologies started at CoreOS with Red Hat’s, bringing software automation expertise to customers and the community.
Introducing the Operator Framework: Building Apps on Kubernetes
May 01, 2018 • By Brandon Philips
To help make it easier to build Kubernetes applications, Red Hat and the Kubernetes open source community today share the Operator Framework – an open source toolkit designed to manage Kubernetes native applications, called Operators, in a more effective, automated, and scalable way.
Hitchhiker’s Guide to KubeCon Europe
April 25, 2018 • By Diane Mueller
The cloud native community is gathering in Copenhagen next week for KubeCon + CloudNativeCon Europe! Here’s your guide to the talks and events you won’t want to miss. Meet the Red Hat and CoreOS team members all week long, May 1-4 at booth D-E01.
Introducing the Vault Operator for Kubernetes
April 19, 2018 • By Haseeb Tariq
Today, Red Hat is pleased to announce a new open source project, the Vault Operator. In keeping with earlier projects, including the etcd Operator and the Prometheus Operator, the Vault Operator aims to make it easier to install, manage, and maintain instances of HashiCorp Vault – a tool designed for storing, managing, and controlling access to secrets, such as tokens, passwords, certificates, and API keys – on Kubernetes clusters.
Open Container Initiative introduces the distribution-spec project: What it means for you
April 09, 2018 • By Joe Brockmeier
Today, the Open Container Initiative (OCI) announced a successful vote to start a new project called distribution-spec. This project is focused on working towards a specification for distribution of OCI container images. Red Hat has been involved with and supports this as a member of OCI, and Red Hat believes this will benefit the Linux container community at large as well as many of Red Hat’s products and projects.
Getting acquainted with Kubernetes 1.10
March 26, 2018 • By Eric Chiang
Kubernetes, a leading open source project for automating deployment, scaling, and management of containerized applications, announced version 1.10 today. Among the key features of this release are support for the Container Storage Interface (CSI), API aggregation, a new mechanism for supporting hardware devices, and more.
It's also the first release since CoreOS joined Red Hat. CoreOS already had the opportunity to work closely with our new Red Hat colleagues through the Kubernetes community and we now have the opportunity to redouble our efforts to help forward Kubernetes as an open source and community-first project.
Kubernetes security bugs patched in Tectonic 1.7 and 1.8
March 15, 2018 • By Rob Szumski
Today we are issuing patches for two newly disclosed security vulnerabilities affecting all versions of Tectonic and Kubernetes versions 1.3 through 1.10. The vulnerabilities have been assigned CVE-2017-1002101 and CVE-2017-1002102, respectively.