Oval Definition:oval:org.opensuse.security:def:201911249
Revision Date:2022-06-30Version:1
Title:CVE-2019-11249
Description:
The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes runs tar inside the container to create a tar archive, copies it over the network, and kubectl unpacks it on the user’s machine. If the tar binary in the container is malicious, it could run any code and output unexpected, malicious results. An attacker could use this to write files to any path on the user’s machine when kubectl cp is called, limited only by the system permissions of the local user. Kubernetes affected versions include versions prior to 1.13.9, versions prior to 1.14.5, versions prior to 1.15.2, and versions 1.1, 1.2, 1.4, 1.4, 1.5, 1.6, 1.7, 1.8, 1.9, 1.10, 1.11, 1.12.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2019-11249
SUSE CVE-2019-11249
Platform(s):openSUSE Tumbleweed
SUSE CaaS Platform 4.0
SUSE Linux Enterprise High Performance Computing 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Manager Proxy 4.0
SUSE Manager Retail Branch Server 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • kubernetes-apiserver-1.22.2-21.2 is installed
  • OR kubernetes-apiserver-minus1-1.21.5-21.2 is installed
  • OR kubernetes-client-1.22.2-21.2 is installed
  • OR kubernetes-controller-manager-1.22.2-21.2 is installed
  • OR kubernetes-controller-manager-minus1-1.21.5-21.2 is installed
  • OR kubernetes-coredns-1.8.4-21.2 is installed
  • OR kubernetes-coredns-minus1-1.8.0-21.2 is installed
  • OR kubernetes-etcd-3.5.0-21.2 is installed
  • OR kubernetes-etcd-minus1-3.4.13-21.2 is installed
  • OR kubernetes-kubeadm-1.22.2-21.2 is installed
  • OR kubernetes-kubelet-1.22.2-21.2 is installed
  • OR kubernetes-proxy-1.22.2-21.2 is installed
  • OR kubernetes-proxy-minus1-1.21.5-21.2 is installed
  • OR kubernetes-scheduler-1.22.2-21.2 is installed
  • OR kubernetes-scheduler-minus1-1.21.5-21.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 12 is installed
  • OR SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • OR SUSE Linux Enterprise Server 12 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND kubernetes-client is not affected
    • Definition Synopsis
  • Release Information
  • SUSE CaaS Platform 4.0 is installed
  • AND
  • kubernetes-client is affected
  • OR kubernetes-common is affected
  • OR kubernetes-kubeadm is affected
  • OR kubernetes-kubelet is affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND
  • kubernetes-client is affected
  • OR kubernetes-common is affected
    • Definition Synopsis
  • Release Information
  • SUSE Manager Proxy 4.0 is installed
  • OR SUSE Manager Retail Branch Server 4.0 is installed
  • OR SUSE Manager Server 4.0 is installed
  • AND kubernetes is affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND
  • kubernetes-client is affected
  • OR kubernetes-common is affected
    • BACK