Hello,
Kubernetes released information about 2 vulnerabilities that allow direct host manipulation. I 've patched already the production and staging clusters. Tools however, running an old version of kubernetes is possibly vulnerable. I 've filed https://phabricator.wikimedia.org/T189680 to track this.
Thanks Alex :) (for everyone the discussion is on task)
This doesn't /seem/ too scary for us, potentially some prevention with a new setting for deployments and respawning pods to be extra sure). It's only a matter of time though as we hang out on 1.4.x that one of these is a showstopper.
On Wed, Mar 14, 2018 at 8:17 AM, Alexandros Kosiaris < akosiaris@wikimedia.org> wrote:
Hello,
Kubernetes released information about 2 vulnerabilities that allow direct host manipulation. I 've patched already the production and staging clusters. Tools however, running an old version of kubernetes is possibly vulnerable. I 've filed https://phabricator.wikimedia.org/T189680 to track this.
-- Alexandros Kosiaris akosiaris@wikimedia.org
Cloud-admin mailing list Cloud-admin@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/cloud-admin
cloud-admin@lists.wikimedia.org