Oval Definition:oval:org.opensuse.security:def:201911253
Revision Date:2022-06-30Version:1
Title:CVE-2019-11253
Description:

Improper input validation in the Kubernetes API server in versions v1.0-1.12 and versions prior to v1.13.12, v1.14.8, v1.15.5, and v1.16.2 allows authorized users to send malicious YAML or JSON payloads, causing the API server to consume excessive CPU or memory, potentially crashing and becoming unavailable. Prior to v1.14.0, default RBAC policy authorized anonymous users to submit requests that could trigger this vulnerability. Clusters upgraded from a version prior to v1.14.0 keep the more permissive policy by default for backwards compatibility.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2019-11253
SUSE CVE-2019-11253
TID000020448
TID000020476
Platform(s):openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
Product(s):
Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • kubernetes-apiserver-1.22.2-21.2 is installed
  • OR kubernetes-apiserver-minus1-1.21.5-21.2 is installed
  • OR kubernetes-client-1.22.2-21.2 is installed
  • OR kubernetes-controller-manager-1.22.2-21.2 is installed
  • OR kubernetes-controller-manager-minus1-1.21.5-21.2 is installed
  • OR kubernetes-coredns-1.8.4-21.2 is installed
  • OR kubernetes-coredns-minus1-1.8.0-21.2 is installed
  • OR kubernetes-etcd-3.5.0-21.2 is installed
  • OR kubernetes-etcd-minus1-3.4.13-21.2 is installed
  • OR kubernetes-kubeadm-1.22.2-21.2 is installed
  • OR kubernetes-kubelet-1.22.2-21.2 is installed
  • OR kubernetes-proxy-1.22.2-21.2 is installed
  • OR kubernetes-proxy-minus1-1.21.5-21.2 is installed
  • OR kubernetes-scheduler-1.22.2-21.2 is installed
  • OR kubernetes-scheduler-minus1-1.21.5-21.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 12 is installed
  • OR SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • OR SUSE Linux Enterprise Server 12 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND kubernetes-client is affected
    • BACK