Skip to content

/ kubernetes-vulnerabilities

No description, website, or topics provided.
Branch: master
Find file
Clone or download

Clone with HTTPS

Use Git or checkout with SVN using the web URL.

Open in Desktop Download ZIP

Launching GitHub Desktop

If nothing happens, download GitHub Desktop and try again.

Launching GitHub Desktop

If nothing happens, download GitHub Desktop and try again.

Launching Xcode

If nothing happens, download Xcode and try again.

Launching Visual Studio

If nothing happens, download the GitHub extension for Visual Studio and try again.

@shucks
shucks add openshift
Latest commit f42866d Jan 29, 2020
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
eks
gke
openshift
vanilla
README.md
other.txt

README.md

kubernetes-vulnerabilities

Security vulnerabilities of Kubernetes.

Each file in the folders (vanilla, gke, etc.) contains CVEs for a specific component of kubernetes:

  • kubectl: vulnerabilities in the kubectl command-line
  • kubelet: vulnerabilities in the kubelet node agent
  • kubernetes: any vulnerability that requires an upgrade of kubernetes itself
  • linux-kernel: kubernetes-related vulnerabilities that stem from the node OS

Each CVE must have one of the following fields:

  • FixedIn: patch numbers that fix each vulnerable minor version (higher versions are assumed fixed)
  • ExistsIn: a list of vulnerable versions (ranges or versions)

FirstVulnerableVersion is the first version that exposed this vulnerability.

You can’t perform that action at this time.