Thanks for the report Moritz. As zhsj@ wrote bullseye atm has 1.20.2-1, which has the server packages, instead of 1.20.5+really1.20.2-1, which does only includes that client it was of course uploaded for exactly this reason. I will file a bug so the correct version gets included in bullseye.
On Wed, 7 Jul 2021 at 17:30, Shengjing Zhu <z...@debian.org> wrote: > On Wed, Jul 7, 2021 at 11:48 PM Moritz Mühlenhoff <j...@inutil.org> wrote: > > > > Source: kubernetes > > X-Debbugs-CC: t...@security.debian.org > > Severity: important > > Tags: security > > > > Hi, > > > > The following vulnerabilities were published for kubernetes. > > > > These are not relevant for bullseye, as it only includes the client > > package, but relevant for updates via fasttrack after the release: > > Bullseye still includes the server package. > > $ rmadison -S kubernetes > kubernetes | 1.20.2-1 | testing | source > kubernetes | 1.20.5+really1.20.2-1 | unstable | source > kubernetes-client | 1.20.2-1 | testing | amd64, arm64, > armel, armhf, i386, s390x > kubernetes-client | 1.20.5+really1.20.2-1 | unstable | amd64, arm64, > armel, armhf, i386, s390x > kubernetes-master | 1.20.2-1 | testing | amd64, arm64, > armel, armhf, i386, s390x > kubernetes-node | 1.20.2-1 | testing | amd64, arm64, > armel, armhf, i386, s390x > > -- > Shengjing Zhu > -- LÉNÁRT, János <lena...@gmail.com>