Bug 871738 (CVE-2021-25749)

Summary:	<sys-cluster/kubelet-{1.22.14,1.23.11,1.25.0}: Windows workloads disobey runAsNonRoot setting
Product:	Gentoo Security	Reporter:	John Helmert III <ajak>
Component:	Vulnerabilities	Assignee:	Gentoo Security <security>
Status:	RESOLVED FIXED
Severity:	minor	CC:	williamh
Priority:	Normal
Version:	unspecified
Hardware:	All
OS:	Linux
URL:	https://www.openwall.com/lists/oss-security/2022/09/15/2
Whiteboard:	B4 [noglsa]
Package list:		Runtime testing required:	---

Description John Helmert III archtester

2022-09-19 16:26:16 UTC

"Hello Kubernetes Community,

A security issue was discovered in Kubernetes that could allow Windows
workloads to run as ContainerAdministrator even when those workloads set
the runAsNonRoot option to true ."

Please bump to 1.22.14, 1.23.11, and 1.25.0. Seems like no fixes for 1.24.

Comment 1 William Hubbs gentoo-dev

2022-10-15 18:58:08 UTC

This is bumped and cleaned up.

Comment 2 John Helmert III archtester

2022-10-15 19:31:03 UTC

Thanks!