Wind River Support Network

HomeDefectsLIN1019-5100
Acknowledged

LIN1019-5100 : Security Advisory - kubernetes - CVE-2020-8557

Created: Jul 23, 2020    Updated: Jul 28, 2020
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17.8 and 1.18.0-1.18.5 do not account for disk usage by a pod which writes to its own /etc/hosts file. The /etc/hosts file mounted in a pod by kubelet is not included by the kubelet eviction manager when calculating ephemeral storage usage by a pod. If a pod writes a large amount of data to the /etc/hosts file, it could fill the storage space of the node and cause the node to fail.

CREATE(Triage):(User=admin) [CVE-2020-8557|https://nvd.nist.gov/vuln/detail/CVE-2020-8557]

CVEs


Live chat
Online