GHSA-MXXC-P822-2HX9 Skipper Ingress Controller Allows Unauthorized Access to Internal Services via ExternalName

Impact When running Skipper as an Ingress controller, users with permissions to create an Ingress and a Service of type ExternalName can create routes that enable them to use Skipper's network access to reach internal services. Patches https://github.com/zalando/skipper/releases/tag/v0.24.0...

PT-2025-48029

Just published a technical deep-dive on a critical Kubernetes security patch. The post analyzes the new Fedora 42 advisory FEDORA-2025-4c576d1bd9 for Kubernetes 1.34, which resolves CVE-2025-28840. Read more: 👉 https://t.co/NvAzX83hZZ Security https://t.co/m1iRJKgoqQ...

PT-2025-31742 · Undefined · Undefined

🔥 Urgent Kubernetes Patch Alert! CVE-2025-02350-2 allows host-level breaches in SUSE environments. ✅ Step-by-step hardening guide + real-world case study. Read more:👉 https://t.co/6fS6OlKnna https://t.co/WvXf5cXWCi...

CVE-2024-45338 affecting package kubernetes for versions less than 1.28.4-13

CVE-2024-45338 affecting package kubernetes for versions less than 1.28.4-13. A patched version of the package is available...

CVE-2022-46167 Capsule vulnerable to privilege escalation by ServiceAccount deployed in a Tenant Namespace

Capsule is a multi-tenancy and policy-based framework for Kubernetes. Prior to version 0.1.3, a ServiceAccount deployed in a Tenant Namespace, when granted with PATCH capabilities on its own Namespace, is able to edit it and remove the Owner Reference, breaking the reconciliation of the Capsule...

Vulnerabilities fixed in AWS patch solutions

Vulnerabilities have been fixed in several AWS patch solutions. These patch solutions were released by AWS to monitor for Java applications vulnerable to Log4Shell and patch these systems immediately. AWS has released three hotpatches released. A hot patch in the form of Debian or RPM packages th...