Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 918089 (CVE-2023-3676, CVE-2023-3955)

Summary: <sys-cluster/kubelet-{1.24.17,1.25.13,1.26.8,1.27.5,1.28.1}: multiple vulnerabilities
Product: Gentoo Security Reporter: John Helmert III <ajak>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: minor CC: williamh
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: B4 [noglsa]
Package list:
Runtime testing required: ---

Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2023-11-23 17:50:41 UTC 
CVE-2023-3676 (https://groups.google.com/g/kubernetes-security-announce/c/d_fvHZ9a5zc):

A security issue was discovered in Kubernetes where a user
 that can create pods on Windows nodes may be able to escalate to admin 
privileges on those nodes. Kubernetes clusters are only affected if they
 include Windows nodes.

Issue: https://github.com/kubernetes/kubernetes/issues/119339

CVE-2023-3955 (https://groups.google.com/g/kubernetes-security-announce/c/JrX4bb7d83E):

A security issue was discovered in Kubernetes where a user
 that can create pods on Windows nodes may be able to escalate to admin 
privileges on those nodes. Kubernetes clusters are only affected if they
 include Windows nodes.

Issue: https://github.com/kubernetes/kubernetes/issues/119595