Google Kubernetes是美国谷歌(Google)公司的一套开源的Docker容器集群管理系统。该系统为容器化的应用提供资源调度、部署运行、服务发现和扩容缩容等功能。CNI Portmap Plugin是其中的一个插件。
Google Kubernetes中的CNI Portmap Plugin存在安全特征问题漏洞。该漏洞是源于网络系统或产品中缺少身份验证、访问控制、权限管理等安全措施。以下产品及版本受到影响:Google Kubernetes 1.11.9之前版本,1.12.7之前版本,1.13.5之前版本,1.14.0之前版本。
目前厂商已发布升级补丁以修复漏洞,补丁获取链接:
https://kubernetes.io/
来源:CONFIRM
链接:https://github.com/containernetworking/plugins/pull/269#issuecomment-477683272
来源:CONFIRM
链接:https://security.netapp.com/advisory/ntap-20190416-0002/
来源:FEDORA
链接:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGOOWAELGH3F7OXRBPH3HCNZELNLXYTW/
来源:REDHAT
链接:https://access.redhat.com/errata/RHBA-2019:0862
来源:FEDORA
链接:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FCN66VYB3XS76SYH567SO7N3I254JOCT/
来源:www.ibm.com
链接:http://www.ibm.com/support/docview.wss?uid=ibm10871970
来源:www.ibm.com
链接:http://www.ibm.com/support/docview.wss?uid=ibm10882952
来源:www.ibm.com
链接:http://www.ibm.com/support/docview.wss?uid=ibm10882956
来源:www.ibm.com
链接:http://www.ibm.com/support/docview.wss?uid=ibm10878460
来源:www.ibm.com
链接:http://www.ibm.com/support/docview.wss?uid=ibm10879585
来源:www-01.ibm.com
链接:https://www-01.ibm.com/support/docview.wss?uid=ibm10882952
来源:www.ibm.com
链接:https://www.ibm.com/support/pages/node/1143454
来源:www.securityfocus.com
链接:http://www.securityfocus.com/bid/107651
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/81146
来源:www.nsfocus.net
链接:http://www.nsfocus.net/vulndb/43603
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/78954
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2019.1811/
来源:nvd.nist.gov
链接:https://nvd.nist.gov/vuln/detail/CVE-2019-9946
