CVE-2018-1002105

CVE-2018-1002105

This post was originally published on this site ---

--- This is a critical security advisory from VMware (VMSA) ---

Greetings from the VMware Security Response Center!

Yesterday Kubernetes disclosed CVE-2018-1002105 – a critical severity vulnerability in the Kubernetes API server. For more details on the vulnerability please see Kubernetes’ announcement here:

https://discuss.kubernetes.io/t/kubernetes-security-announcement-v1-10-11-v1-11-5-v1-12-3-released-to-address-cve-2018-1002105/3700

This vulnerability affects the following VMware products:

-VMware Pivotal Container Service (PKS)
-VMware vCloud Director Container Service Extension (CSE)
-Photon OS

There will be no VMware Security Advisory since remediation for these products has already been documented in a separate advisory or the offering’s github page.

Remediation Information:

PKS – Fixed in 1.2.3
Documentation: https://docs.pivotal.io/runtimes/pks/1-2/release-notes.html
Advisory: https://pivotal.io/security/cve-2018-1002105

CSE – Fixed in 1.2.5
Documentation: https://vmware.github.io/container-service-extension/RELEASE_NOTES.html

Photon OS – Fixed in 1.10.11-1 and 1.11.5-1
Advisory: https://github.com/vmware/photon/wiki/Security-Updates-2-112

For our service offerings that use Kubernetes, mitigations are already in place which have closed down the critical severity attack vector associated with CVE-2018-1002105 while full remediation is in progress.

The post CVE-2018-1002105 appeared first on VMware Security & Compliance Blog.

One Reply to “CVE-2018-1002105”

  1. No matter your geographical area, or what age you
    property is, new siding for yur house will dramatically increase the aesthetics of your home.
    It is extremely all to easy to clean andd paint, iif
    required down the road, but concurrdently bad in relation to
    insulating your house. Insects are more unlikely drawn to vinyl
    because of the added chemicals in contrrast to wood, which
    easily decomposes. http://siding.pcba-inc.org/

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.