Cloud Foundry Logo
blog single gear
Blog
Security Advisory

CVE-2019-9946: Kubernetes affecting certain network configurations with CNI

by: April 1, 2019

CVE-2019-9946: Kubernetes affecting certain network configurations with CNI

Severity

Medium

Vendor

Cloud Foundry Foundation

Affected Cloud Foundry Products and Versions

  • Cloud Foundry Container Runtime (CFCR)
    • All versions prior to 0.31.0

Description

A security issue was discovered with interactions between the CNI (Container Networking Interface) portmap plugin versions prior to 0.7.5 and Kubernetes. The CNI portmap plugin is embedded into Kubernetes releases so new releases of Kubernetes are required to fix this issue. The issue is Medium and upgrading to Kubernetes 1.11.9, 1.12.7, 1.13.5, and 1.14.0 is encouraged to fix this issue if this plugin is used in your environment.

Mitigation

Users of affected versions should apply the following mitigations or upgrades:

  • Releases that have fixed this issue include:
    • CFCR version 0.31.0

History

2019-04-01: Initial vulnerability report published.

Cloud Foundry Foundation Security Team Profile Image

Cloud Foundry Foundation Security Team, AUTHOR

SEE ALL ARTICLES

You Might Also Like

USN-3690-1: AMD Microcode update
Security Advisory

USN-3690-1: AMD Microcode update

by Cloud Foundry Foundation Security Team July 19, 2018
USN-6558-1: audiofile vulnerabilities
Security Advisory

USN-6558-1: audiofile vulnerabilities

by Cloud Foundry Foundation Security Team April 4, 2024
CVE-2014-0160 Heartbleed
Security Advisory

CVE-2014-0160 Heartbleed

by Cloud Foundry Foundation Security Team April 10, 2014
This website uses cookies to offer you a better browsing experience. Find out more about how we use cookies and how you can change your settings. Accept