Kube-proxy
on Windows can unintentionally forward traffic to local processes
listening on the same port (“spec.ports[*].port”) as a LoadBalancer
Service when the LoadBalancer controller
does not set the “status.loadBalancer.ingress[].ip” field. Clusters
where the LoadBalancer controller sets the
“status.loadBalancer.ingress[].ip” field are unaffected.
References
Link | Resource |
---|---|
https://github.com/kubernetes/kubernetes/pull/99958 | Third Party Advisory |
https://groups.google.com/g/kubernetes-security-announce/c/lIoOPObO51Q/m/O15LOazPAgAJ | Mailing List Third Party Advisory |
https://security.netapp.com/advisory/ntap-20231221-0003/ |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: kubernetes
Published: 2023-10-30T02:19:48.916Z
Updated: 2023-10-30T02:19:48.916Z
Reserved: 2021-01-21T21:42:58.237Z
Link: CVE-2021-25736
JSON object: View
NVD Information
Status : Modified
Published: 2023-10-30T03:15:07.653
Modified: 2023-12-21T22:15:07.533
Link: CVE-2021-25736
JSON object: View
Redhat Information
No data.
CWE