What OpenShift Online customers should know about the recent Kubernetes bugs
December 4, 2018 | by
On December 3rd, 2018, the Kubernetes Product Security team released information about a vulnerability in kubernetes. We've addressed this at a corporate level in thesepostings detailing the flaws. This issue is assigned CVE-2018-1002105 and given a security impact of Critical by Red Hat Product Security. Red Hat OpenShift is built upon kubernetes and as such these bugs were also present in Red Hat OpenShift Container Platform, Red Hat OpenShift Online and Red Hat OpenShift Dedicated.
Some Background The state of the art for application packaging and supply chain security for containers continues to evolve at a rapid pace. As a registry, Quay.io needs to strike a careful balance ...