Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add patch for CVE-2020-8551 #72

Closed
wzshiming opened this issue Sep 6, 2021 · 2 comments
Closed

Add patch for CVE-2020-8551 #72

wzshiming opened this issue Sep 6, 2021 · 2 comments
Labels
help wanted Extra attention is needed priority/low Low(Score<4.0) CVSS Score CVE wontfix This will not be worked on

Comments

@wzshiming
Copy link
Member

No description provided.

@wzshiming wzshiming added help wanted Extra attention is needed priority/low Low(Score<4.0) CVSS Score CVE labels Sep 16, 2021
@mengjiao-liu
Copy link
Contributor

mengjiao-liu commented Dec 30, 2021
edited

CVE 详情:
https://nvd.nist.gov/vuln/detail/CVE-2020-8551

Kuberntes [Security Advisory] CVE-2020-8551, CVE-2020-8552: Denial of service (Medium)

CVE-2020-8551 影响的版本:

  • kubelet v1.17.0 - v1.17.2
  • kubelet v1.16.0 - v1.16.6
  • kubelet v1.15.0 - v1.15.10

kubelets 版本小于 v1.15.0 未受影响

Kubernetes 官方修复版本

  • v1.17.3
  • v1.16.7
  • v1.15.10

kubernetes fixed PR:
kubernetes/kubernetes#89377

引入此 CVE 的 PR:(在 1.15 版本引入)
kubernetes/kubernetes#75228
所以在 klts 不需要再 修复 1.15 之前的版本

此 issue 可关闭。

@mengjiao-liu
Copy link
Contributor

@wzshiming 请 review 下确认是否可关闭。

@wzshiming wzshiming added the wontfix This will not be worked on label Dec 31, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
help wanted Extra attention is needed priority/low Low(Score<4.0) CVSS Score CVE wontfix This will not be worked on
Projects
KLTS 任务看板
Status: 完成
Milestone
No milestone
Development

No branches or pull requests
2 participants
@wzshiming @mengjiao-liu