Oval Definition:oval:org.opensuse.security:def:20208557
Revision Date:2022-05-22Version:1
Title:CVE-2020-8557
Description:

The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17.8 and 1.18.0-1.18.5 do not account for disk usage by a pod which writes to its own /etc/hosts file. The /etc/hosts file mounted in a pod by kubelet is not included by the kubelet eviction manager when calculating ephemeral storage usage by a pod. If a pod writes a large amount of data to the /etc/hosts file, it could fill the storage space of the node and cause the node to fail.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2020-8557
SUSE-CU-2020:385-1
SUSE-CU-2020:386-1
SUSE-CU-2020:388-1
SUSE-CU-2020:389-1
Mitre CVE-2020-8557
SUSE CVE-2020-8557
SUSE-CU-2020:385-1
SUSE-CU-2020:386-1
SUSE-CU-2020:388-1
SUSE-CU-2020:389-1
SUSE-CU-2020:789-1
SUSE-CU-2020:791-1
SUSE-CU-2020:793-1
Platform(s):SUSE CaaS Platform 4.0
SUSE Linux Enterprise High Performance Computing 12
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Containers 15 SP1
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Retail Branch Server 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND Package Information
  • kubernetes-1.17.4-4.18 is installed
  • OR kubernetes-client-1.17.4-4.18 is installed
  • OR kubernetes-common-1.17.4-4.18 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND
  • kubernetes-1.17.4-4.18 is installed
  • OR kubernetes-client-1.17.4-4.18 is installed
  • OR kubernetes-common-1.17.4-4.18 is installed
  • OR Package Information
  • SUSE CaaS Platform 4.0 is installed
  • AND
  • caasp-release-4.2.2-24.26 is installed
  • OR kubernetes-1.17.4-4.18 is installed
  • OR kubernetes-client-1.17.4-4.18 is installed
  • OR kubernetes-common-1.17.4-4.18 is installed
  • OR kubernetes-kubeadm-1.17.4-4.18 is installed
  • OR kubernetes-kubelet-1.17.4-4.18 is installed
  • OR skuba-1.4.1-3.46 is installed
  • OR skuba-update-1.4.1-3.46 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND
  • kubernetes-client-1.17.4-4.18.1 is installed
  • OR kubernetes-common-1.17.4-4.18.1 is installed
  • OR Package Information
  • SUSE CaaS Platform 4.0 is installed
  • AND
  • caasp-release-4.2.2-24.26.1 is installed
  • OR kubernetes-client-1.17.4-4.18.1 is installed
  • OR kubernetes-common-1.17.4-4.18.1 is installed
  • OR kubernetes-kubeadm-1.17.4-4.18.1 is installed
  • OR kubernetes-kubelet-1.17.4-4.18.1 is installed
  • OR skuba-1.4.1-3.46.1 is installed
  • OR skuba-update-1.4.1-3.46.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND kubernetes is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP1 is installed
  • OR SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • OR SUSE Linux Enterprise Server 15 SP1 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • OR SUSE Linux Enterprise Storage 6 is installed
  • OR SUSE Manager Proxy 4.0 is installed
  • OR SUSE Manager Retail Branch Server 4.0 is installed
  • OR SUSE Manager Server 4.0 is installed
  • AND
  • kubernetes-client-1.17.4-4.18.1 is installed
  • OR kubernetes-common-1.17.4-4.18.1 is installed
  • OR Package Information
  • SUSE CaaS Platform 4.0 is installed
  • AND
  • caasp-release-4.2.2-24.26.1 is installed
  • OR kubernetes-client-1.17.4-4.18.1 is installed
  • OR kubernetes-common-1.17.4-4.18.1 is installed
  • OR kubernetes-kubeadm-1.17.4-4.18.1 is installed
  • OR kubernetes-kubelet-1.17.4-4.18.1 is installed
  • OR skuba-1.4.1-3.46.1 is installed
  • OR skuba-update-1.4.1-3.46.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP1 is installed
  • OR SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • OR SUSE Linux Enterprise Server 15 SP1 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • OR SUSE Linux Enterprise Storage 6 is installed
  • OR SUSE Manager Proxy 4.0 is installed
  • OR SUSE Manager Retail Branch Server 4.0 is installed
  • OR SUSE Manager Server 4.0 is installed
  • AND Package Information
  • kubernetes-client-1.17.4-4.18.1 is installed
  • OR kubernetes-common-1.17.4-4.18.1 is installed
    • BACK