Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 813642 (CVE-2021-25741) - <sys-cluster/kubelet-{1.19.15,1.20.11,1.21.5,1.22.2}: host filesystem access
Summary: <sys-cluster/kubelet-{1.19.15,1.20.11,1.21.5,1.22.2}: host filesystem access
Alias: CVE-2021-25741
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
Whiteboard: B4 [noglsa]
Depends on:
Reported: 2021-09-18 13:34 UTC by John Helmert III
Modified: 2023-11-23 17:51 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2021-09-18 13:34:00 UTC
From URL:

"A security issue was discovered in Kubernetes where a user may be able to create a container with subpath volume mounts to access files & directories outside of the volume, including on the host filesystem."

Fixes in 1.19.15, 1.20.11, 1.21.5, and 1.22.2. Please bump.
Comment 1 William Hubbs gentoo-dev 2021-09-20 21:48:06 UTC
The versions listed in this bug have been stabilized and all previous
versions are removed.


Comment 2 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2021-09-20 21:51:19 UTC
Thanks William!