VDB
RHSA-2020%3A3809
RHSA-2020%3A3809
PUBLISHED
CVSS 5.5 MEDIUM
A flaw was found in Kubernetes, where the amount of disk space the /etc/hosts file can use is unconstrained . This flaw can allow attacker-controlled pods to cause a denial of service if they have permission to write to the node's /etc/hosts file.
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | openshift4/ose-sriov-dp-admission-controller@sha256:e4fcb04f87b9ade6417003395a9848a1ccdd849f8910656cc8191478c541c9d3_s390x as a component of Red Hat OpenShift Container Platform 4.3 | openshift4/ose-sriov-dp-admission-controller@sha256:e4fcb04f87b9ade6417003395a9848a1ccdd849f8910656cc8191478c541c9d3_s390x |
| Red Hat | openshift4/ose-hyperkube@sha256:ba56afca75eb9ab0736e8247d89f600665a6a615fb5801e4e65a1138a59415be_amd64 as a component of Red Hat OpenShift Container Platform 4.3 | *, * |
| Red Hat | openshift4/ose-hyperkube@sha256:35d765bfd0987735c36737ff604aa09e0d9b5184bcf8cdc5a057f891a8178522_s390x as a component of Red Hat OpenShift Container Platform 4.3 | *, * |
| Red Hat | openshift4/ose-sriov-dp-admission-controller@sha256:88ff0bdf89bd45df738be9f905b453edc1edae8d4a3fff9209f6f5164edf5dea_ppc64le as a component of Red Hat OpenShift Container Platform 4.3 | openshift4/ose-sriov-dp-admission-controller@sha256:88ff0bdf89bd45df738be9f905b453edc1edae8d4a3fff9209f6f5164edf5dea_ppc64le |
| Red Hat | openshift4/ose-hyperkube@sha256:ba56afca75eb9ab0736e8247d89f600665a6a615fb5801e4e65a1138a59415be_amd64 as a component of Red Hat OpenShift Container Platform 4.3 | openshift4/ose-hyperkube@sha256:ba56afca75eb9ab0736e8247d89f600665a6a615fb5801e4e65a1138a59415be_amd64 |
| Red Hat | openshift4/ose-sriov-dp-admission-controller@sha256:88ff0bdf89bd45df738be9f905b453edc1edae8d4a3fff9209f6f5164edf5dea_ppc64le as a component of Red Hat OpenShift Container Platform 4.3 | *, * |
| Red Hat | openshift4/ose-hyperkube@sha256:8127897e9131efb5d35fdc0996849f7c549f2f0b4d3a6c0dc8683b106ab5a6ae_ppc64le as a component of Red Hat OpenShift Container Platform 4.3 | openshift4/ose-hyperkube@sha256:8127897e9131efb5d35fdc0996849f7c549f2f0b4d3a6c0dc8683b106ab5a6ae_ppc64le |
| Red Hat | openshift4/ose-sriov-dp-admission-controller@sha256:e4fcb04f87b9ade6417003395a9848a1ccdd849f8910656cc8191478c541c9d3_s390x as a component of Red Hat OpenShift Container Platform 4.3 | openshift4/ose-sriov-dp-admission-controller@sha256:e4fcb04f87b9ade6417003395a9848a1ccdd849f8910656cc8191478c541c9d3_s390x, * |
| Red Hat | openshift4/ose-sriov-dp-admission-controller@sha256:46586a08d423c95cc94c3830944cefbe60ee5a8d8952c1c13e9c30aea06c0120_amd64 as a component of Red Hat OpenShift Container Platform 4.3 | openshift4/ose-sriov-dp-admission-controller@sha256:46586a08d423c95cc94c3830944cefbe60ee5a8d8952c1c13e9c30aea06c0120_amd64 |
| Red Hat | openshift4/ose-sriov-dp-admission-controller@sha256:46586a08d423c95cc94c3830944cefbe60ee5a8d8952c1c13e9c30aea06c0120_amd64 as a component of Red Hat OpenShift Container Platform 4.3 | *, openshift4/ose-sriov-dp-admission-controller@sha256:46586a08d423c95cc94c3830944cefbe60ee5a8d8952c1c13e9c30aea06c0120_amd64 |
| Red Hat | openshift4/ose-hyperkube@sha256:8127897e9131efb5d35fdc0996849f7c549f2f0b4d3a6c0dc8683b106ab5a6ae_ppc64le as a component of Red Hat OpenShift Container Platform 4.3 | *, * |
| Red Hat | openshift4/ose-hyperkube@sha256:35d765bfd0987735c36737ff604aa09e0d9b5184bcf8cdc5a057f891a8178522_s390x as a component of Red Hat OpenShift Container Platform 4.3 | openshift4/ose-hyperkube@sha256:35d765bfd0987735c36737ff604aa09e0d9b5184bcf8cdc5a057f891a8178522_s390x |
Timeline
- Sep 23, 2020 CVE Published
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- May 15, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2020:3809 advisory
- https://access.redhat.com/security/updates/classification/#moderate advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1804533 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=1835977 issue
- https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3809.json advisory
- https://access.redhat.com/security/cve/CVE-2020-8557 advisory
- https://www.cve.org/CVERecord?id=CVE-2020-8557 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-8557 advisory
- https://groups.google.com/g/kubernetes-security-announce/c/cB_JUsYEKyY advisory
- https://access.redhat.com/security/cve/CVE-2020-9283 advisory
- https://www.cve.org/CVERecord?id=CVE-2020-9283 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-9283 advisory
- https://groups.google.com/forum/#!topic/golang-announce/3L45YRc91SY advisory