CGA-5jfw-w68x-xw62

Published

Last updated

https://images.chainguard.dev/security/CGA-5jfw-w68x-xw62

Package

kubernetes-dns-node-cache

Latest Update

Not affected

Aliases

CVE-2019-11255
GHSA-f4w6-3rh6-6q4q

Severity

6.5

Medium

CVSS V3

Summary

Kubernetes CSI Sidecar Containers Can Allow Unauthorized Data Access

Description

Improper input validation in Kubernetes CSI sidecar containers for external-provisioner (<v0.4.3, <v1.0.2, v1.1, <v1.2.2, <v1.3.1), external-snapshotter (<v0.4.2, <v1.0.2, v1.1, <1.2.2), and external-resizer (v0.1, v0.2) could result in unauthorized PersistentVolume data access or volume mutation during snapshot, restore from snapshot, cloning and resizing operations.

References

https://nvd.nist.gov/vuln/detail/CVE-2019-11255
https://github.com/advisories/GHSA-f4w6-3rh6-6q4q
https://github.com/kubernetes/kubernetes/issues/85233
https://access.redhat.com/errata/RHSA-2019:4054
https://access.redhat.com/errata/RHSA-2019:4096
https://access.redhat.com/errata/RHSA-2019:4099
https://access.redhat.com/errata/RHSA-2019:4225
https://groups.google.com/forum/#!topic/kubernetes-security-announce/aXiYN0q4uIw
https://security.netapp.com/advisory/ntap-20200810-0003

Updates

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

CGA-5jfw-w68x-xw62

Severity

Summary

Description

References

Updates

Product

Why Chainguard

Customers

Company

Resources