Skip to content

Commit 9373b6c

Browse files
zpavlinovicgopherbot
zpavlinovic
authored and
gopherbot
committed
data/reports: update GO-2024-2746
 - data/reports/GO-2024-2746.yaml Updates #2746 Change-Id: Ib156e8b36cf9c768a58ead781bdabccfc4c0b2fb Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/595975 Reviewed-by: Tatiana Bradley <tatianabradley@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Auto-Submit: Zvonimir Pavlinovic <zpavlinovic@google.com>
1 parent db6401a commit 9373b6c

File tree

2 files changed

+18
-35
lines changed

2 files changed

+18
-35
lines changed

data/osv/GO-2024-2746.json

+12-27
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,16 @@
4040
]
4141
}
4242
],
43-
"ecosystem_specific": {}
43+
"ecosystem_specific": {
44+
"imports": [
45+
{
46+
"path": "k8s.io/kubernetes/plugin/pkg/admission/serviceaccount",
47+
"symbols": [
48+
"Plugin.limitSecretReferences"
49+
]
50+
}
51+
]
52+
}
4453
}
4554
],
4655
"references": [
@@ -49,44 +58,20 @@
4958
"url": "https://github.com/advisories/GHSA-pxhw-596r-rwq5"
5059
},
5160
{
52-
"type": "ADVISORY",
53-
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-3177"
54-
},
55-
{
56-
"type": "WEB",
57-
"url": "http://www.openwall.com/lists/oss-security/2024/04/16/4"
58-
},
59-
{
60-
"type": "WEB",
61+
"type": "FIX",
6162
"url": "https://github.com/kubernetes/kubernetes/commit/7c861b1ecad97e1ab9332c970c9294a72065111a"
6263
},
63-
{
64-
"type": "WEB",
65-
"url": "https://github.com/kubernetes/kubernetes/commit/a619ca3fd3ee3c222d9df784622020de398076d2"
66-
},
67-
{
68-
"type": "WEB",
69-
"url": "https://github.com/kubernetes/kubernetes/commit/f9fb6cf52a769a599a45e700375115c2ecc86e9b"
70-
},
7164
{
7265
"type": "WEB",
7366
"url": "https://github.com/kubernetes/kubernetes/issues/124336"
7467
},
7568
{
7669
"type": "WEB",
7770
"url": "https://groups.google.com/g/kubernetes-security-announce/c/JxjHf7fkVd8/m/oVCzypyOAQAJ"
78-
},
79-
{
80-
"type": "WEB",
81-
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT"
82-
},
83-
{
84-
"type": "WEB",
85-
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WL54MTLGMTBZZO5PYGEGEBERTMADC4WC"
8671
}
8772
],
8873
"database_specific": {
8974
"url": "https://pkg.go.dev/vuln/GO-2024-2746",
90-
"review_status": "UNREVIEWED"
75+
"review_status": "REVIEWED"
9176
}
9277
}

data/reports/GO-2024-2746.yaml

+6-8
Original file line numberDiff line numberDiff line change
@@ -8,6 +8,10 @@ modules:
88
- introduced: 1.29.0
99
- fixed: 1.29.4
1010
vulnerable_at: 1.29.3
11+
packages:
12+
- package: k8s.io/kubernetes/plugin/pkg/admission/serviceaccount
13+
symbols:
14+
- Plugin.limitSecretReferences
1115
summary: |-
1216
Kubernetes allows bypassing mountable secrets policy imposed by the
1317
ServiceAccount admission plugin in k8s.io/kubernetes
@@ -17,16 +21,10 @@ ghsas:
1721
- GHSA-pxhw-596r-rwq5
1822
references:
1923
- advisory: https://github.com/advisories/GHSA-pxhw-596r-rwq5
20-
- advisory: https://nvd.nist.gov/vuln/detail/CVE-2024-3177
21-
- web: http://www.openwall.com/lists/oss-security/2024/04/16/4
22-
- web: https://github.com/kubernetes/kubernetes/commit/7c861b1ecad97e1ab9332c970c9294a72065111a
23-
- web: https://github.com/kubernetes/kubernetes/commit/a619ca3fd3ee3c222d9df784622020de398076d2
24-
- web: https://github.com/kubernetes/kubernetes/commit/f9fb6cf52a769a599a45e700375115c2ecc86e9b
24+
- fix: https://github.com/kubernetes/kubernetes/commit/7c861b1ecad97e1ab9332c970c9294a72065111a
2525
- web: https://github.com/kubernetes/kubernetes/issues/124336
2626
- web: https://groups.google.com/g/kubernetes-security-announce/c/JxjHf7fkVd8/m/oVCzypyOAQAJ
27-
- web: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT
28-
- web: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WL54MTLGMTBZZO5PYGEGEBERTMADC4WC
2927
source:
3028
id: GHSA-pxhw-596r-rwq5
3129
created: 2024-05-17T16:12:44.610818-04:00
32-
review_status: UNREVIEWED
30+
review_status: REVIEWED

0 commit comments

Comments
 (0)