From 4388a34f7aafaef5cb97b6b97b17a148bc6f038b Mon Sep 17 00:00:00 2001
From: Jordan Liggitt <liggitt@google.com>
Date: Mon, 3 Dec 2018 10:40:24 -0500
Subject: [PATCH] Update changelogs for CVE-2018-1002105

---
 CHANGELOG-1.10.md | 2 +-
 CHANGELOG-1.11.md | 2 +-
 CHANGELOG-1.12.md | 2 +-
 CHANGELOG-1.13.md | 3 +--
 4 files changed, 4 insertions(+), 5 deletions(-)

diff --git a/CHANGELOG-1.10.md b/CHANGELOG-1.10.md
index 851da9c32b..7f4380c0b9 100644
--- a/CHANGELOG-1.10.md
+++ b/CHANGELOG-1.10.md
@@ -235,7 +235,7 @@ filename | sha512 hash
 
 ### Other notable changes
 
-* Fixes an issue with stuck connections handling error responses ([#71415](https://github.com/kubernetes/kubernetes/pull/71415), [@liggitt](https://github.com/liggitt))
+* CVE-2018-1002105: Fix critical security issue in kube-apiserver upgrade request proxy handler ([#71411](https://github.com/kubernetes/kubernetes/issues/71411), [@liggitt](https://github.com/liggitt))
 
 
 
diff --git a/CHANGELOG-1.11.md b/CHANGELOG-1.11.md
index 803ef6450d..018a009cd1 100644
--- a/CHANGELOG-1.11.md
+++ b/CHANGELOG-1.11.md
@@ -196,7 +196,7 @@ filename | sha512 hash
 
 ### Other notable changes
 
-* Fixes an issue with stuck connections handling error responses ([#71414](https://github.com/kubernetes/kubernetes/pull/71414), [@liggitt](https://github.com/liggitt))
+* CVE-2018-1002105: Fix critical security issue in kube-apiserver upgrade request proxy handler ([#71411](https://github.com/kubernetes/kubernetes/issues/71411), [@liggitt](https://github.com/liggitt))
 * IPVS proxier mode now support connection based graceful termination. ([#66012](https://github.com/kubernetes/kubernetes/pull/66012), [@Lion-Wei](https://github.com/Lion-Wei))
 * Update Cluster Autoscaler to 1.3.4 ([#70285](https://github.com/kubernetes/kubernetes/pull/70285), [@losipiuk](https://github.com/losipiuk))
 * Fix cluster autoscaler addon permissions so it can access batch/job. ([#69858](https://github.com/kubernetes/kubernetes/pull/69858), [@losipiuk](https://github.com/losipiuk))
diff --git a/CHANGELOG-1.12.md b/CHANGELOG-1.12.md
index 442e28d783..541a9a60ea 100644
--- a/CHANGELOG-1.12.md
+++ b/CHANGELOG-1.12.md
@@ -165,7 +165,7 @@ filename | sha512 hash
 
 ### Other notable changes
 
-* Fixes an issue with stuck connections handling error responses ([#71413](https://github.com/kubernetes/kubernetes/pull/71413), [@liggitt](https://github.com/liggitt))
+* CVE-2018-1002105: Fix critical security issue in kube-apiserver upgrade request proxy handler ([#71411](https://github.com/kubernetes/kubernetes/issues/71411), [@liggitt](https://github.com/liggitt))
 * remove retry operation on attach/detach  azure disk ([#70568](https://github.com/kubernetes/kubernetes/pull/70568), [@andyzhangx](https://github.com/andyzhangx))
 * Fix CSI volume limits not showing up in node's capacity and allocatable ([#70540](https://github.com/kubernetes/kubernetes/pull/70540), [@gnufied](https://github.com/gnufied))
 * kubeadm: fix a panic when calling "alpha phase certs renew all --use-api=false" ([#70768](https://github.com/kubernetes/kubernetes/pull/70768), [@neolit123](https://github.com/neolit123))
diff --git a/CHANGELOG-1.13.md b/CHANGELOG-1.13.md
index 4102837d72..202600c395 100644
--- a/CHANGELOG-1.13.md
+++ b/CHANGELOG-1.13.md
@@ -164,9 +164,8 @@ filename | sha512 hash
 
 ### Other notable changes
 
+* CVE-2018-1002105: Fix critical security issue in kube-apiserver upgrade request proxy handler ([#71411](https://github.com/kubernetes/kubernetes/issues/71411), [@liggitt](https://github.com/liggitt))
 * Update Cluster Autoscaler version to 1.13.0-rc.2. Release notes: https://github.com/kubernetes/autoscaler/releases/tag/cluster-autoscaler-1.13.0-rc.2 ([#71452](https://github.com/kubernetes/kubernetes/pull/71452), [@losipiuk](https://github.com/losipiuk))
-* Fixes an issue with stuck connections handling error responses ([#71419](https://github.com/kubernetes/kubernetes/pull/71419), [@liggitt](https://github.com/liggitt))
-* Fixes an issue with stuck connections handling error responses ([#71412](https://github.com/kubernetes/kubernetes/pull/71412), [@liggitt](https://github.com/liggitt))
 * Upgrade Stackdriver Logging Agent addon image to 0.6-1.6.0-1 to use Fluentd v1.2. This provides nanoseconds timestamp granularity for logs. ([#70954](https://github.com/kubernetes/kubernetes/pull/70954), [@qingling128](https://github.com/qingling128))
 * fixes a runtime error occuring when sorting the output of `kubectl get` with empty results ([#70740](https://github.com/kubernetes/kubernetes/pull/70740), [@mfpierre](https://github.com/mfpierre))
 * fix azure disk attach/detach failed forever issue ([#71377](https://github.com/kubernetes/kubernetes/pull/71377), [@andyzhangx](https://github.com/andyzhangx))