GO-2022-0617
and 8 other vulnerabilities
GO-2022-0617 : WITHDRAWN: Potential proxy IP restriction bypass in Kubernetes in k8s.io/kubernetes
GO-2022-0983 : kubectl ANSI escape characters not filtered in k8s.io/kubernetes
GO-2023-1864 : Kubelet vulnerable to bypass of seccomp profile enforcement in k8s.io/kubernetes
GO-2023-1891 : kube-apiserver vulnerable to policy bypass in k8s.io/kubernetes
GO-2023-1892 : Kubernetes mountable secrets policy bypass in k8s.io/kubernetes
GO-2023-2170 : Kubernetes privilege escalation vulnerability in k8s.io/kubernetes
GO-2023-2330 : Kubernetes privilege escalation vulnerability in k8s.io/kubernetes
GO-2023-2341 : Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes
GO-2024-2994 : Kubernetes sets incorrect permissions on Windows containers logs in k8s.io/kubernetes
Discover Packages
k8s.io/kubernetes
cmd
kubeadm
app
util
pubkeypin
package
Version:
v1.24.11
Opens a new window with list of versions in this module.
Published: Feb 22, 2023
License: Apache-2.0
Opens a new window with license information.
Imports: 5
Opens a new window with list of imports.
Imported by: 60
Opens a new window with list of known importers.
Documentation
¶
Package pubkeypin provides primitives for x509 public key pinning in the
style of RFC7469.
Hash calculates the SHA-256 hash of the Subject Public Key Information (SPKI)
object in an x509 certificate (in DER encoding). It returns the full hash as a
hex encoded string (suitable for passing to Set.Allow).
Set is a set of pinned x509 public keys.
NewSet returns a new, empty PubKeyPinSet
Allow adds an allowed public key hash to the Set
CheckAny checks if at least one certificate matches one of the public keys in the set
Empty returns true if the Set contains no pinned public keys.
¶
Click to show internal directories.
Click to hide internal directories.
Affected by 
Documentation
¶
Source Files