Information on source package kubernetes

Available versions

ReleaseVersion
sid1.7.16+dfsg-1

Open issues

BugsidDescription
CVE-2019-9946undeterminedCloud Native Computing Foundation (CNCF) CNI (Container Networking Int ...
CVE-2019-11250vulnerableBearer tokens are revealed in logs
CVE-2019-11248vulnerable
CVE-2019-11247vulnerableAPI server allows access to custom resources via wrong scope
CVE-2019-1002100vulnerableIn all Kubernetes versions prior to v1.11.8, v1.12.6, and v1.13.4, use ...
CVE-2018-1002105vulnerableIn all Kubernetes versions prior to v1.10.11, v1.11.5, and v1.12.3, in ...
CVE-2018-1002100vulnerableIn Kubernetes versions 1.5.x, 1.6.x, 1.7.x, 1.8.x, and prior to versio ...

Resolved issues

BugDescription
CVE-2019-11249Incomplete fixes for CVE-2019-1002101 and CVE-2019-11246, kubectl cp potential directory traversal
CVE-2019-11246Incomplete fix for CVE-2019-1002101 allows for arbitrary file write via `kubectl cp`
CVE-2019-11245
CVE-2019-11244In Kubernetes v1.8.x-v1.14.x, schema info is cached by kubectl in the ...
CVE-2019-11243In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientCon ...
CVE-2019-1002101The kubectl cp command allows copying files between containers and the ...
CVE-2018-1002101In Kubernetes versions 1.9.0-1.9.9, 1.10.0-1.10.5, and 1.11.0-1.11.1, ...
CVE-2017-1002102In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to version ...
CVE-2017-1002101In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to version ...
CVE-2017-1002100Default access permissions for Persistent Volumes (PVs) created by the ...
CVE-2017-1000056Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation ...
CVE-2016-7075It was found that Kubernetes as used by Openshift Enterprise 3 did not ...
CVE-2016-1906Openshift allows remote attackers to gain privileges by updating a bui ...
CVE-2016-1905The API server in Kubernetes does not properly check admission control ...
CVE-2015-7528Kubernetes before 1.2.0-alpha.5 allows remote attackers to read arbitr ...
CVE-2015-5305Directory traversal vulnerability in Kubernetes, as used in Red Hat Op ...

Search for package or bug name: Reporting problems