This repository was archived by the owner on May 5, 2020. It is now read-only.
Need to Update Kubernetes to Remove Vulnerability CVE-2018-1002105 #12
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
A vulnerability has been identified in Kubernetes which impacts Kubernetes v1.0.x-1.9.x
The patch for this vulnerability is only available in Kubernetes 1.10, 1.11, and 1.12, there are no official patches for 1.9 (which is the version of Kubernetes installed by this script).
This vulnerability is only a risk if you allow remote access to kubectl. As a matter of course we don't allow that in our setups, however other users of this script could expose themselves to this.
Should we update this repo to install the new, patched version of Kubernetes 1.10?
The text was updated successfully, but these errors were encountered: