CVE-2020-8557

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2020-8557
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-8557.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-8557
Aliases
Downstream
Related
Published
2020-07-23T17:15:12.513Z
Modified
2026-04-10T04:28:25.091107Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17.8 and 1.18.0-1.18.5 do not account for disk usage by a pod which writes to its own /etc/hosts file. The /etc/hosts file mounted in a pod by kubelet is not included by the kubelet eviction manager when calculating ephemeral storage usage by a pod. If a pod writes a large amount of data to the /etc/hosts file, it could fill the storage space of the node and cause the node to fail.

References

Affected packages

Git / github.com/kubernetes/kubernetes

Affected ranges

Type
GIT
Repo
https://github.com/kubernetes/kubernetes
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
39a145ca3413079bcb9c80846488786fed5fe1cb
Introduced
70132b0f130acc0bed193d9ba59dd186f0e634cf
Fixed
4fb7ed12476d57b8437ada90b4f93b17ffaeed99
Introduced
9e991415386e4cf155a24b1da15becaa390438d8
Fixed
dff82dc0de47299ab66c83c626e08b245ab19037
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.16.13"
        },
        {
            "introduced": "1.17.0"
        },
        {
            "fixed": "1.17.9"
        },
        {
            "introduced": "1.18.0"
        },
        {
            "fixed": "1.18.6"
        }
    ]
}

Affected versions

v0.*
v0.13.1-dev
v0.17.0
v1.*
v1.1.0-alpha.0
v1.1.0-alpha.1
v1.10.0-alpha.0
v1.10.0-alpha.1
v1.10.0-alpha.2
v1.10.0-alpha.3
v1.11.0-alpha.0
v1.11.0-alpha.1
v1.11.0-alpha.2
v1.12.0-alpha.0
v1.12.0-alpha.1
v1.13.0-alpha.0
v1.13.0-alpha.1
v1.13.0-alpha.2
v1.13.0-alpha.3
v1.14.0-alpha.0
v1.14.0-alpha.1
v1.14.0-alpha.2
v1.14.0-alpha.3
v1.15.0-alpha.0
v1.15.0-alpha.1
v1.15.0-alpha.2
v1.15.0-alpha.3
v1.16.0
v1.16.0-alpha.0
v1.16.0-alpha.1
v1.16.0-alpha.2
v1.16.0-alpha.3
v1.16.0-beta.0
v1.16.0-beta.1
v1.16.0-beta.2
v1.16.0-rc.1
v1.16.0-rc.2
v1.16.1
v1.16.1-beta.0
v1.16.10
v1.16.10-beta.0
v1.16.11
v1.16.11-rc.0
v1.16.12
v1.16.12-rc.0
v1.16.12-rc.1
v1.16.13-rc.0
v1.16.2
v1.16.2-beta.0
v1.16.3
v1.16.3-beta.0
v1.16.4
v1.16.4-beta.0
v1.16.5
v1.16.5-beta.0
v1.16.5-beta.1
v1.16.6
v1.16.6-beta.0
v1.16.7
v1.16.7-beta.0
v1.16.8
v1.16.8-beta.0
v1.16.9
v1.16.9-beta.0
v1.17.0
v1.17.0-alpha.0
v1.17.1
v1.17.1-beta.0
v1.17.2
v1.17.2-beta.0
v1.17.3
v1.17.3-beta.0
v1.17.4
v1.17.4-beta.0
v1.17.5
v1.17.5-beta.0
v1.17.6
v1.17.6-beta.0
v1.17.7
v1.17.7-rc.0
v1.17.8
v1.17.8-rc.0
v1.17.8-rc.1
v1.17.9-rc.0
v1.18.0
v1.18.1
v1.18.1-beta.0
v1.18.2
v1.18.2-beta.0
v1.18.3
v1.18.3-beta.0
v1.18.4
v1.18.4-rc.0
v1.18.5
v1.18.5-rc.0
v1.18.5-rc.1
v1.18.6-rc.0
v1.2.0-alpha.1
v1.2.0-alpha.2
v1.2.0-alpha.3
v1.2.0-alpha.4
v1.2.0-alpha.5
v1.2.0-alpha.6
v1.2.0-alpha.7
v1.2.0-alpha.8
v1.3.0-alpha.0
v1.3.0-alpha.1
v1.3.0-alpha.2
v1.3.0-alpha.3
v1.3.0-alpha.4
v1.3.0-alpha.5
v1.4.0-alpha.1
v1.4.0-alpha.2
v1.4.0-alpha.3
v1.5.0-alpha.0
v1.5.0-alpha.1
v1.5.0-alpha.2
v1.6.0-alpha.0
v1.6.0-alpha.1
v1.6.0-alpha.2
v1.6.0-alpha.3
v1.7.0-alpha.0
v1.7.0-alpha.1
v1.7.0-alpha.2
v1.7.0-alpha.3
v1.7.0-alpha.4
v1.8.0-alpha.0
v1.8.0-alpha.1
v1.8.0-alpha.2
v1.8.0-alpha.3
v1.9.0-alpha.0
v1.9.0-alpha.1
v1.9.0-alpha.2
v1.9.0-alpha.3

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-8557.json"