k8s-custom-iptables icon indicating copy to clipboard operation
k8s-custom-iptables copied to clipboard

Published 20 hours ago verified publisher icon bowei

Update docker image in gcr repo to mitigate CVE-2019-5021

Open YngveMolnes opened this issue 5 years ago • 1 comments

https://www.alpinelinux.org/posts/Docker-image-vulnerability-CVE-2019-5021.html

I can find this in an instace of the image I run in a cluster.

⇒  kubectl exec -it k8s-custom-iptables-xxx /bin/sh
/ # cat /etc/shadow | grep root
root:::0:::::

YngveMolnes avatar May 15 '19 19:05 YngveMolnes

In case anyone wants to use an updated image from their own repo, the REGISTRY variable assignment in the Makefile should be ?= instead of = as this way you'll try to push to Google's repo and will end up losing a few hours of your life like I just did 🤦

daaain avatar Apr 14 '20 14:04 daaain