Affected by GO-2022-0617
and 10 other vulnerabilities
GO-2022-0617 : WITHDRAWN: Potential proxy IP restriction bypass in Kubernetes in k8s.io/kubernetes
GO-2022-0983 : kubectl ANSI escape characters not filtered in k8s.io/kubernetes
GO-2023-1628 : Kubernetes vulnerable to path traversal in k8s.io/kubernetes
GO-2023-1629 : Kubernetes vulnerable to validation bypass in k8s.io/kubernetes
GO-2023-1864 : Kubelet vulnerable to bypass of seccomp profile enforcement in k8s.io/kubernetes
GO-2023-1891 : kube-apiserver vulnerable to policy bypass in k8s.io/kubernetes
GO-2023-1892 : Kubernetes mountable secrets policy bypass in k8s.io/kubernetes
GO-2023-2170 : Kubernetes privilege escalation vulnerability in k8s.io/kubernetes
GO-2023-2330 : Kubernetes privilege escalation vulnerability in k8s.io/kubernetes
GO-2023-2341 : Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes
GO-2024-2994 : Kubernetes sets incorrect permissions on Windows containers logs in k8s.io/kubernetes
Discover Packages
k8s.io/kubernetes
cmd
kubeadm
app
discovery
token
package
Version:
v1.23.12
Opens a new window with list of versions in this module.
Published: Sep 21, 2022
License: Apache-2.0
Opens a new window with license information.
Imports: 21
Opens a new window with list of imports.
Imported by: 30
Opens a new window with list of known importers.
Documentation
Documentation
¶
View Source
const BootstrapUser = "token-bootstrap-client"
BootstrapUser defines bootstrap user name
RetrieveValidatedConfigInfo connects to the API Server and tries to fetch the cluster-info ConfigMap
It then makes sure it can trust the API Server by looking at the JWS-signed tokens and (if CACertHashes is not empty)
validating the cluster CA against a set of pinned public keys
Source Files
¶
Click to show internal directories.
Click to hide internal directories.