8 matches found
RHCOS 4 : OpenShift Container Platform 4.3.10 openshift (RHSA-2020:1276)
The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1276 advisory. - kubernetes: crafted requests to kubelet API allow for memory exhaustion CVE-2020-8551 Note that Nessus has not tested for this issue but ha...
RHEL 7 / 8 : OpenShift Container Platform 4.3.10 openshift (RHSA-2020:1276)
The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1276 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private clo...
Fedora 32 : origin (2020-aeea04cd13)
Security fix for CVE-2020-8551, CVE-2020-8552, CVE-2020-8555, CVE-2020-8945 - Rebase to head of usptream 3.11 branch Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...
Security Bulletin: IBM Cloud Kubernetes Service is affected by a Kubernetes kubelet security vulnerability (CVE-2020-8551)
Summary IBM Cloud Kubernetes Service is affected by a security vulnerability in the Kubernetes kubelet that could lead to a denial of service CVE-2020-8551 Vulnerability Details CVEID: CVE-2020-8551 DESCRIPTION: Kubernetes kubelet API is vulnerable to a denial of service, caused by improper input...
Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.3.10 openshift-enterprise-hyperkube-container security update
An update for openshift-enterprise-hyperkube-container is now available for Red Hat OpenShift Container Platform 4.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.3.10 openshift security update
An update for openshift is now available for Red Hat OpenShift Container Platform 4.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2020-8551
CVE-2020-8551 affects the Kubernetes kubelet, with DoS possible via the kubelet API. Affected are kubelet versions 1.15.0–1.15.9, 1.16.0–1.16.6, and 1.17.0–1.17.2. The vulnerability can be triggered through either the unauthenticated read-only HTTP API on port 10255 or the authenticated HTTPS API...
CVE-2020-8551 Kubernetes kubelet denial of service
The Kubelet component in versions 1.15.0-1.15.9, 1.16.0-1.16.6, and 1.17.0-1.17.2 has been found to be vulnerable to a denial of service attack via the kubelet API, including the unauthenticated HTTP read-only API typically served on port 10255, and the authenticated HTTPS API typically served on...