CVE-2020-8566

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-8566

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-8566.json

Aliases

GHSA-5x96-j797-5qqw

Published

2020-12-07T22:15:21Z

Modified

2024-05-13T22:24:54Z

Summary

[none]

Details

In Kubernetes clusters using Ceph RBD as a storage provisioner, with logging level of at least 4, Ceph RBD admin secrets can be written to logs. This occurs in kube-controller-manager's logs during provisioning of Ceph RBD persistent claims. This affects < v1.19.3, < v1.18.10, < v1.17.13.

References

https://security.netapp.com/advisory/ntap-20210122-0006/
https://groups.google.com/g/kubernetes-security-discuss/c/vm-HcrFUOCs/m/36utxAM5CwAJ
https://github.com/kubernetes/kubernetes/issues/95624

Affected packages

Git / github.com/kubernetes/kubelet

Affected ranges

Type: GIT
Repo: https://github.com/kubernetes/kubelet
Events: Introduced

1af8853567a0faecc59fbc4d7d2ddc9359ddde83

Introduced

f0d06ae44a2e7ef0c05aecb6e7773222947dd156

Introduced

f9974c2baa2d9ca25416d38e7ecfc7ff4d05d58e

Fixed

e24c1e8df2dc66a36a852743b75e37a308aad8aa