First published: Thu Apr 29 2021(Updated: )
A security issue was discovered in Kubernetes where an authorized user may be able to redirect traffic to private networks on a Node. Kubernetes clusters are only affected if an untrusted user can create or modify EndpointSlices. Kubernetes already prevents creation of Endpoint IPs in the localhost or link-local range, but the same validation was not performed on EndpointSlice IPs.
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kubernetes | <1.21.1 | 1.21.1 |
redhat/kubernetes | <1.20.7 | 1.20.7 |
redhat/kubernetes | <1.19.11 | 1.19.11 |
redhat/kubernetes | <1.18.19 | 1.18.19 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.