GHSA-82hx-w2r5-c2wq

Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/02/GHSA-82hx-w2r5-c2wq/GHSA-82hx-w2r5-c2wq.json
Aliases
  • CVE-2020-8552
Published
2022-02-15T01:57:18Z
Modified
2023-09-20T22:42:48Z
Details

The Kubernetes API server component in Kubernetes versions prior to 1.15.9, 1.16.0-1.16.6, and 1.17.0-1.17.2 has been found to be vulnerable to a denial of service attack via successful API requests.

References

Affected packages

Go / k8s.io/apiserver

Source Details

Package Name
k8s.io/apiserver

Affected ranges

Type
SEMVER
Events
Introduced
0The exact introduced commit is unknown
Fixed
0.15.10

Ecosystem specific 

{
    "affected_functions": [
        ""
    ]
}

Go / k8s.io/apiserver

Source Details

Package Name
k8s.io/apiserver

Affected ranges

Type
SEMVER
Events
Introduced
0.16.0
Fixed
0.16.7

Ecosystem specific 

{
    "affected_functions": [
        ""
    ]
}

Go / k8s.io/apiserver

Source Details

Package Name
k8s.io/apiserver

Affected ranges

Type
SEMVER
Events
Introduced
0.17.0
Fixed
0.17.3

Ecosystem specific 

{
    "affected_functions": [
        ""
    ]
}