March 28, 2019 10:00AM PDT
AWS is aware of two recently disclosed security issues in Kubernetes (CVE-2019-1002101 and CVE-2019-9946). With the exception of the AWS services listed below, no customer action is required to address these issues.
Amazon Elastic Container Service for Kubernetes (EKS)
Amazon EKS's managed Kubernetes control plane is not impacted by these security issues. An updated Amazon EKS-optimized AMI is now available. Customers should replace existing worker nodes with the new AMI version to address the issue described above. Instructions on how to update worker nodes can be found in the EKS documentation. Additionally, customers should update their kubectl binary to the latest version. Instructions on updating kubectl can be found in the EKS documentation.