[Git][security-tracker-team/security-tracker][master] Add CVE-2020-8554/kubernetes
Salvatore Bonaccorso
carnil at debian.org
Mon Dec 7 20:51:23 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
96ae5a71 by Salvatore Bonaccorso at 2020-12-07T21:50:08+01:00
Add CVE-2020-8554/kubernetes
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -53441,8 +53441,11 @@ CVE-2020-8556
CVE-2020-8555 (The Kubernetes kube-controller-manager in versions v1.0-1.14, versions ...)
- kubernetes 1.18.2-1
NOTE: https://github.com/kubernetes/kubernetes/issues/91542
-CVE-2020-8554
+CVE-2020-8554 [Man in the middle using LoadBalancer or ExternalIPs]
RESERVED
+ - kubernetes <unfixed>
+ NOTE: https://www.openwall.com/lists/oss-security/2020/12/07/5
+ NOTE: https://github.com/kubernetes/kubernetes/issues/97076
CVE-2020-8553 (The Kubernetes ingress-nginx component prior to version 0.28.0 allows ...)
NOT-FOR-US: Kubernetes ingress-nginx component
CVE-2020-8552 (The Kubernetes API server component in versions prior to 1.15.9, 1.16. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96ae5a7125d3335ab460c38a83735990145f1033
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96ae5a7125d3335ab460c38a83735990145f1033
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201207/873a848b/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list