kubernetes-fips-1.28
Chainguard
Status
Impact
Kubernetes 1.28 has reached its end of life (EOL). To resolve the issue with the newer version of the Kubernetes package, upstream maintainers would need to provide a patch for 1.28. In the meantime, you can mitigate the problem by disabling the ContainerCheckpoint feature gate in your kubelet configuration, turning off the kubelet read-only port, and restricting access to the kubelet API. Alternatively, upgrading to a fixed version, which enforces authentication for the kubelet Checkpoint API, will resolve the issue. For further details, please refer to this GitHub issue: https://github.com/kubernetes/kubernetes/issues/130016.
Status