Re: [kubernetes/kubernetes] CVE-2017-1002101 - subpath volume mount handling allows arbitrary file access in host filesystem (#60813)

1 view
Skip to first unread message

dc70184

unread,
Mar 23, 2018, 4:16:23 PM3/23/18
to kubernetes/kubernetes, k8s-mirror-storage-misc, Team mention

This article states that:
•Kubernetes 1.7.0-1.7.13

Does this mean all versions between 1.7.0 and 1.17.13 are vulnerable? For example, is 1.17.6 vulnerable?


You are receiving this because you are on a team that was mentioned.
Reply to this email directly, view it on GitHub, or mute the thread.

Michelle Au

unread,
Mar 23, 2018, 4:19:12 PM3/23/18
to kubernetes/kubernetes, k8s-mirror-storage-misc, Team mention

anything between 1.7.0 and 1.7.13 are vulnerable, including 1.7.6

Pushkar Joglekar

unread,
May 16, 2022, 6:01:25 PM5/16/22
to kubernetes/kubernetes, k8s-mirror-storage-misc, Team mention

/label official-cve-feed

(Related to kubernetes/sig-security#1)


Reply to this email directly, view it on GitHub, or unsubscribe.
You are receiving this because you are on a team that was mentioned.Message ID: <kubernetes/kubernetes/issues/60813/1128180266@github.com>

Reply all
Reply to author
Forward
0 new messages