/
DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CGA-whwq-vw74-7x2w

Published

Last updated

https://images.chainguard.dev/security/CGA-whwq-vw74-7x2w
Package

eks-distro-fips-1.28

Repository

Chainguard

Latest Update
Fix not planned
Aliases
  • CVE-2025-0426
  • GHSA-jgfp-53c3-624w

Severity

Unknown

References

  • https://nvd.nist.gov/vuln/detail/CVE-2025-0426

Updates

Status

Fix not planned

Impact

kubernetes-1.28 is EOL. Upstream maintainers would need to patch 1.28 in order to address issue with newer version of kubernetes package. Issue can be mitigated by setting the ContainerCheckpoint feature gate to false in your kubelet configuration, disabling the kubelet read-only port, and limiting access to the kubelet API, or upgrading to a fixed version listed below, which enforces authentication for the kubelet Checkpoint API. Upgrading to a newer version addresses the issue. See https://github.com/kubernetes/kubernetes/issues/130016

Status

Under investigation


Safe Source for Open Sourceâ„¢
Contact us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard ContainersChainguard LibrariesChainguard VMsIntegrationsPricing