8 matches found
SUSE CVE-2026-32241
Flannel is a network fabric for containers, designed for Kubernetes. The Flannel project includes an experimental Extension backend that allows users to easily prototype new backend types. In versions of Flannel prior to 0.28.2, this Extension backend is vulnerable to a command injection that...
GO-2026-4856 Cilium L7 proxy may bypass Kubernetes NetworkPolicy for same-node traffic in github.com/cilium/cilium
Cilium L7 proxy may bypass Kubernetes NetworkPolicy for same-node traffic in github.com/cilium/cilium...
Security Bulletin: Vulnerability in AIOHTTP bundled with IBM Fusion Content-Aware Storage.
Summary IBM Fusion Content-Aware Storage includes AIOHTTP which could allow DoS, request smuggling, logging storm attacks. The target service within Content-Aware Storage is vLLM, and this service is accessible only on the private network within kubernetes, and requires this private network acces...
Red Hat Connectivity Link Resource Management Error Vulnerability
Red Hat Connectivity Link is a Kubernetes network connectivity management platform from Red Hat, USA. Red Hat Connectivity Link suffers from a Resource Management Error vulnerability that stems from uncontrolled resource consumption by an application, which can be exploited by an attacker to caus...
CVE-2024-53095 smb: client: Fix use-after-free of network namespace.
In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free of network namespace. Recently, we got a customer report that CIFS triggers oops while reconnecting to a server. 0 The workload runs on Kubernetes, and some pods mount CIFS servers in non-root...
The vulnerability of the network provider for Kubernetes based on OVN (Open Virtual Network) OVN-Kubernetes is related to insufficient input validation. This allows attackers to exploit the protected information or exert other unauthorized actions.
The vulnerability of the network provider for Kubernetes based on OVN Open Virtual Network involves insufficient input validation. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information or carry out other malicious actions...
Moderate: Red Hat Security Advisory: ACS 3.70 enhancement and security update
Updated images are now available for Red Hat Advanced Cluster Security for Kubernetes RHACS. The updated image includes bug fixes and feature improvements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score...
Is Your Kubernetes Cluster Ready for Version 1.24?
Kubernetes rolled out Version 1.24 on May 3, 2022, as its first release of 2022. This version is packed with some notable improvements, as well as new and deprecated features. In this post, we will cover some of the more significant items on the list. The Dockershim removal The new release has...