Skip to content

Commit

Permalink
advisories: kubernetes packages
Browse files Browse the repository at this point in the history 
Six advisories: two vulnerabilites each in three kubernetes packages,
kubernetes-1.27, kubernetes-1.28, and kubernetes-1.29.
  • Loading branch information
@larvacea
larvacea committed Oct 14, 2024
1 parent 47af6db commit b6f4f51
Show file tree
Hide file tree
Showing 19 changed files with 110 additions and 9,698 deletions.
18 changes: 18 additions & 0 deletions advisories/staging/BRSA-drwh5tbpr8wv.toml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
[advisory]
id = "BRSA-drwh5tbpr8wv"
title = "libcontainer CVE-2024-21626"
cve = "CVE-2024-21626"
severity = "high"
description = "A flaw was found in libcontainer which could leak file descriptors and give a container access to a host filesystem."

[[advisory.products]]
package-name = "kubernetes-1.27"
patched-version = "1.27.16"
patched-release = "0"
patched-epoch = "0"

[updateinfo]
author = "mharrimn"
issue-date = 2024-10-09T18:37:37Z
arches = ["x86_64", "aarch64"]
version = "staging"
18 changes: 18 additions & 0 deletions advisories/staging/BRSA-dtrat1npvdre.toml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
[advisory]
id = "BRSA-dtrat1npvdre"
title = "libcontainer CVE-2024-21626"
cve = "CVE-2024-21626"
severity = "high"
description = "A flaw was found in libcontainer which could leak file descriptors and give a container access to a host filesystem."

[[advisory.products]]
package-name = "kubernetes-1.29"
patched-version = "1.29.8"
patched-release = "0"
patched-epoch = "0"

[updateinfo]
author = "mharrimn"
issue-date = 2024-10-09T18:59:32Z
arches = ["aarch64", "x86_64"]
version = "staging"
18 changes: 18 additions & 0 deletions advisories/staging/BRSA-emfpcl53wtfr.toml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
[advisory]
id = "BRSA-emfpcl53wtfr"
title = "libcontainer CVE-2024-45310"
cve = "CVE-2024-45310"
severity = "low"
description = "A flaw was found in libcontainer which could create empty files or directories on the host."

[[advisory.products]]
package-name = "kubernetes-1.27"
patched-version = "1.27.16"
patched-release = "0"
patched-epoch = "0"

[updateinfo]
author = "mharrimn"
issue-date = 2024-10-09T19:26:27Z
arches = ["x86_64", "aarch64"]
version = "staging"
18 changes: 18 additions & 0 deletions advisories/staging/BRSA-fdnhjaspych2.toml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
[advisory]
id = "BRSA-fdnhjaspych2"
title = "libcontainer CVE-2024-21626"
cve = "CVE-2024-21626"
severity = "high"
description = "A flaw was found in libcontainer which could leak file descriptors and give a container access to a host filesystem."

[[advisory.products]]
package-name = "kubernetes-1.28"
patched-version = "1.28.13"
patched-release = "0"
patched-epoch = "0"

[updateinfo]
author = "mharrimn"
issue-date = 2024-10-09T18:46:56Z
arches = ["aarch64", "x86_64"]
version = "staging"
18 changes: 18 additions & 0 deletions advisories/staging/BRSA-lk2xqb8iclw8.toml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
[advisory]
id = "BRSA-lk2xqb8iclw8"
title = "libcontainer CVE-2024-45310"
cve = "CVE-2024-45310"
severity = "low"
description = "A flaw was found in libcontainer which could create empty files or directories on the host."

[[advisory.products]]
package-name = "kubernetes-1.28"
patched-version = "1.28.13"
patched-release = "0"
patched-epoch = "0"

[updateinfo]
author = "mharrimn"
issue-date = 2024-10-09T19:25:01Z
arches = ["x86_64", "aarch64"]
version = "staging"
18 changes: 18 additions & 0 deletions advisories/staging/BRSA-r4dkiuopvj2w.toml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
[advisory]
id = "BRSA-r4dkiuopvj2w"
title = "libcontainer CVE-2024-45310"
cve = "CVE-2024-45310"
severity = "low"
description = "A flaw was found in libcontainer which could create empty files or directories on the host."

[[advisory.products]]
package-name = "kubernetes-1.29"
patched-version = "1.29.8"
patched-release = "0"
patched-epoch = "0"

[updateinfo]
author = "mharrimn"
issue-date = 2024-10-09T19:21:40Z
arches = ["aarch64", "x86_64"]
version = "staging"
2 changes: 1 addition & 1 deletion packages/kubernetes-1.26/Cargo.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -70,7 +70,7 @@ url = "https://raw.githubusercontent.com/aws/eks-distro/main/projects/kubernetes
sha512 = "7b65bb30ee2863ea19dbcb74a855c2a898b85e99e43d772228eec81859017cad0949dd0758461a2c6f7c496907718153ddbd2c30eb578c6b5c11599d593ac72d"

[[package.metadata.build-package.external-files]]
url = " https://raw.githubusercontent.com/aws/eks-distro/refs/heads/main/projects/kubernetes/kubernetes/1-26/patches/0016-EKS-PATCH-Add-sourceARN-to-sts-headers.patch"
url = "https://raw.githubusercontent.com/aws/eks-distro/refs/heads/main/projects/kubernetes/kubernetes/1-26/patches/0016-EKS-PATCH-Add-sourceARN-to-sts-headers.patch"
sha512 = "6a916a0644e98ab8f1bd00c1ac8fc408667ad1d7e0cbb179d2c6fd8d9d9db04fcd0ec8528464b08e5cb5a1718d8e926052138e7dd42301e4acc6f692c4cdbd38"

# RPM BuildRequires
Expand Down
Loading

0 comments on commit b6f4f51

Please sign in to comment.