5 matches found
SUSE CVE-2018-1000400
Kubernetes CRI-O version prior to 1.9 contains a Privilege Context Switching Error CWE-270 vulnerability in the handling of ambient capabilities that can result in containers running with elevated privileges, allowing users abilities they should not have. This attack appears to be exploitable via...
Fedora 28 : 2:cri-o (2018-0c9ce03fce)
New version with a few bug fixes ---- Latest build with fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Fedora Update for cri-o FEDORA-2018-0c9ce03fce
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : 2:cri-o (2018-320cb9d7fb)
New version with a few bug fixes ---- Latest build with fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
CVE-2018-1000400
KVE- CVE-2018-1000400 affects Kubernetes CRI-O prior to 1.9. The vulnerability arises from a Privilege Context Switching Error in handling ambient capabilities, allowing containers to run with elevated privileges. The initial description notes exploitation via container execution and a fix in 1.9...