VDB
GO-2024-2994
GO-2024-2994
PUBLISHED
Kubernetes sets incorrect permissions on Windows containers logs in k8s.io/kubernetes
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| k8s.io | kubernetes | 0, 1.28.0, 1.29.0 |
Timeline
- Jul 22, 2024 CVE Published
- Feb 4, 2026 CVE Updated
References
- https://github.com/advisories/GHSA-82m2-cv7p-4m75 advisory
- https://github.com/kubernetes/kubernetes/commit/23660a78ae462a6c8c75ac7ffd9af97550dda1aa url
- https://github.com/kubernetes/kubernetes/commit/84beb2915fa28ae477fe0676be8ba94ccd2b811a url
- https://github.com/kubernetes/kubernetes/commit/90589b8f63d28bcd3db89749950ebc48ed07c190 url
- https://github.com/kubernetes/kubernetes/commit/de2033033b1d202ecaaa79d41861a075df8b49c1 url
- https://github.com/kubernetes/kubernetes/issues/126161 url
- https://groups.google.com/g/kubernetes-security-announce/c/81c0BHkKNt0 url