Oracle Linux 7 : kubernetes / kubeadm-upgrade / kubeadm-ha-setup (ELSA-2019-4593)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4593 advisory. - OLCNE-235 CVE-2019-9946 portmap inserts rules at the front of the iptables nat chains -- CVE-2019-9946 -- CVE-2019-1002101 -- CVE-2019-1002100...

BELL-CVE-2019-9946 CVE-2019-9946 does not affect BellSoft software

Bulletin has no description...

CentOS 8 : container-tools:rhel8 (CESA-2019:3403)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:3403 advisory. - containers/image: not enforcing TLS when sending username+password credentials to token servers leading to credential disclosure CVE-2019-10214 - QEM...

CVE-2019-9946

Cloud Native Computing Foundation CNCF CNI Container Networking Interface 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE-...

Security Bulletin: IBM Cloud Private for Data is affected multiple security vulnerabilities in IBM Cloud Private Kubernetes

Summary IBM Cloud Private for Data is affected by multiple security vulnerabilites in Kubernetes which in some cases can allow unauthorized access to the Kubernetes API Server and/or trusted user privilege escalation. Vulnerability Details CVEID: CVE-2019-9946 DESCRIPTION: Kubernetes could provid...

Fedora 29 : containernetworking-plugins (2019-24217abfdf)

Resolves: 1715758 - CVE-2019-9946 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Networ...

Fedora 30 : containernetworking-plugins (2019-d2b57d3b19)

Resolves: 1715758 - CVE-2019-9946 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Networ...

Photon OS 2.0: Kubernetes PHSA-2019-2.0-0148

An update of the kubernetes package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0148. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

kubernetes kubeadm-upgrade kubeadm-ha-setup security update

kubernetes 1.12.7-1.1.2 - OLCNE-257 fix coredns issue and minor upgrade issue 1.12.7-1.1.1 - OLCNE-235 CVE-2019-9946 portmap inserts rules at the front of the iptables nat chains 1.12.7-1.0.1 - Add Oracle Build Files For Version v1.12.7 kubeadm-upgrade 0.0.1-1.0.22 -- Bump up 1.12.7 version for...

kubernetes security update

1.11.3-2.5.2 - OLCNE-235 CVE-2019-9946 portmap inserts rules at the front of the iptables nat chains 1.11.3-2.4.2 - CVE-2019-1002101 kubectl fix potential directory traversal 1.11.3-2.3.2 - CVE-2019-1002100 Limit the number of operations in a single json patch to be 10,000...

kubernetes security update

1.10.5-2.5.4 - OLCNE-235 CVE-2019-9946 portmap inserts rules at the front of the iptables nat chains 1.10.5-2.4.4 - CVE-2019-1002101 kubectl fix potential directory traversal 1.10.5-2.3.4 - CVE-2019-1002100 Limit the number of operations in a single json patch to be 10,000 - Fixup kubeadm-setup.s...

kubernetes security update

1.9.11-2.5.1 - OLCNE-235 CVE-2019-9946 portmap inserts rules at the front of the iptables nat chains 1.9.11-2.4.1 - CVE-2019-1002101 kubectl fix potential directory traversal 1.9.11-2.3.1 - CVE-2019-1002100 Limit the number of operations in a single json patch to be 10,000 - Fixup kubeadm-setup.s...

CVE-2019-9946

Cloud Native Computing Foundation CNCF CNI Container Networking Interface 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE-...

CVE-2019-9946

Summary: CVE-2019-9946 affects Cloud Native Computing Foundation (CNCF) CNI 0.7.4 used with Kubernetes. The portmap plugin in CNI inserts rules at the front of the iptables nat chains, giving them precedence over the KUBE-SERVICES chain. This could cause HostPort/portmap rules to match traffic ev...

CVE-2019-9946: Kubernetes affecting certain network configurations with CNI | Cloud Foundry

Severity Medium Vendor Cloud Foundry Foundation Affected Cloud Foundry Products and Versions Cloud Foundry Container Runtime CFCR All versions prior to 0.31.0 Description A security issue was discovered with interactions between the CNI Container Networking Interface portmap plugin versions prior...