[Git][security-tracker-team/security-tracker][master] Add CVE-2019-11247/kubernetes
Salvatore Bonaccorso
carnil at debian.org
Mon Aug 5 20:20:15 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
72ef5623 by Salvatore Bonaccorso at 2019-08-05T19:19:45Z
Add CVE-2019-11247/kubernetes
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10163,8 +10163,10 @@ CVE-2019-11249 [Incomplete fixes for CVE-2019-1002101 and CVE-2019-11246, kubect
NOTE: https://github.com/kubernetes/kubernetes/issues/80984
CVE-2019-11248
RESERVED
-CVE-2019-11247
+CVE-2019-11247 [API server allows access to custom resources via wrong scope]
RESERVED
+ - kubernetes <unfixed>
+ NOTE: https://github.com/kubernetes/kubernetes/issues/80983
CVE-2019-11246 [Incomplete fix for CVE-2019-1002101 allows for arbitrary file write via `kubectl cp`]
RESERVED
- kubernetes <not-affected> (Vulnerable code not present; incomplete fix not applied)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/72ef56237ffe66b359bb454b07b2ef4ffe19af94
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/72ef56237ffe66b359bb454b07b2ef4ffe19af94
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190805/2586b49d/attachment.html>
More information about the debian-security-tracker-commits
mailing list