CVE-2018-1002100
unknown
CVSS v3
—
CVSS v2
—
VIR risk
—
Description
In Kubernetes versions 1.5.x, 1.6.x, 1.7.x, 1.8.x, and prior to version 1.9.6, the kubectl cp command insecurely handles tar data returned from the container, and can be caused to overwrite arbitrary local files.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2018-1002100
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2018-1002100.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| debian | bookworm | fixed | 1.17.4-1 |
| debian | bullseye | fixed | 1.17.4-1 |
| debian | forky | fixed | 1.17.4-1 |
| debian | sid | fixed | 1.17.4-1 |
| debian | trixie | fixed | 1.17.4-1 |
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| Go | k8s.io/kubernetes | >=1.5.0-alpha.0,<1.9.6 | 1.9.6 |
| Go | k8s.io/kubernetes | >=1.5.0,<1.9.6 | 1.9.6 |
References
- https://www.suse.com/security/cve/CVE-2018-1002100.html
- https://nvd.nist.gov/vuln/detail/CVE-2018-1002100
- https://github.com/kubernetes/kubernetes/issues/61297
- https://bugzilla.redhat.com/show_bug.cgi?id=1564305
- https://github.com/kubernetes/kubernetes
- https://hansmi.ch/articles/2018-04-openshift-s2i-security
- https://github.com/advisories/GHSA-2jq6-ffph-p4h8
- https://security-tracker.debian.org/tracker/CVE-2018-1002100
Verify integrity in audit chain (admin only). AS-IS.