Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2015:1945
HistoryOct 27, 2015 - 6:30 p.m.

(RHSA-2015:1945) Moderate: kubernetes security update

2015-10-2718:30:55
access.redhat.com
18

EPSS

0.001

Percentile

41.5%

JSON

Kubernetes allows orchestration and control of Docker containers as used in OpenShift Enterprise 3.

Kubernetes fails to validate object name types before passing the data to etcd. As the etcd service generates keys based on the object name type this can lead to a directory path traversal. (CVE-2015-5305)

Red Hat would like to thank Jordan Liggitt for discovering and
reporting this issue.

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64openshift-sdn-ovs< 3.0.2.0-0.git.20.656dc3e.el7oseopenshift-sdn-ovs-3.0.2.0-0.git.20.656dc3e.el7ose.x86_64.rpm
RedHat7x86_64openshift-node< 3.0.2.0-0.git.20.656dc3e.el7oseopenshift-node-3.0.2.0-0.git.20.656dc3e.el7ose.x86_64.rpm
RedHat7x86_64openshift-master< 3.0.2.0-0.git.20.656dc3e.el7oseopenshift-master-3.0.2.0-0.git.20.656dc3e.el7ose.x86_64.rpm
RedHat7srcopenshift< 3.0.2.0-0.git.20.656dc3e.el7oseopenshift-3.0.2.0-0.git.20.656dc3e.el7ose.src.rpm
RedHat7x86_64openshift< 3.0.2.0-0.git.20.656dc3e.el7oseopenshift-3.0.2.0-0.git.20.656dc3e.el7ose.x86_64.rpm
RedHat7x86_64openshift-clients< 3.0.2.0-0.git.20.656dc3e.el7oseopenshift-clients-3.0.2.0-0.git.20.656dc3e.el7ose.x86_64.rpm
RedHat7x86_64tuned-profiles-openshift-node< 3.0.2.0-0.git.20.656dc3e.el7osetuned-profiles-openshift-node-3.0.2.0-0.git.20.656dc3e.el7ose.x86_64.rpm

Related

osv 2
nvd 1
veracode 2
github 1
cve 1
debiancve 1
cvelist 1
prion 1
nessus 1
osv
osv
Directory traversal in k8s.io/kubernetes
2022-02-15 01:57:18
Directory Traversal in Kubernetes
2022-02-15 01:57:18
nvd
nvd
CVE-2015-5305
2015-11-06 18:59:00
veracode
veracode
Path Traversal
2017-04-28 02:45:06
Path Traversal
2019-01-15 09:08:20
github
github
Directory Traversal in Kubernetes
2022-02-15 01:57:18
cve
cve
CVE-2015-5305
2015-11-06 18:59:00
debiancve
debiancve
CVE-2015-5305
2015-11-06 18:59:00
cvelist
cvelist
CVE-2015-5305
2015-11-06 18:00:00
prion
prion
Directory traversal
2015-11-06 18:59:00
nessus
nessus
RHEL 7 : kubernetes (RHSA-2015:1945)
2018-12-04 00:00:00

EPSS

0.001

Percentile

41.5%

JSON
Related for RHSA-2015:1945
osv2nvd1veracode2github1cve1debiancve1cvelist1prion1nessus1