CVE-2020-8552

The Kubernetes API server component in versions prior to 1.15.9, 1.16.0-1.16.6, and 1.17.0-1.17.2 has been found to be vulnerable to a denial of service attack via successful API requests.

References

Affected packages

Git / github.com/kubernetes/kubelet

Affected ranges

Type: GIT
Repo: https://github.com/kubernetes/kubelet
Events: Last affected

095c6bd056162bc90c3d4c9050b34a7265bba659

Introduced

f9974c2baa2d9ca25416d38e7ecfc7ff4d05d58e

Last affected

3d0d0a3a4b4425943a61f8843bbcf9483ef4845a

Introduced

250a1838aa2c492c9096ff86558515b8639d7e87

Last affected

9a74903985bd83003e2aeebffba9e08b8690db42

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-8552.json"

Git / github.com/kubernetes/kubernetes

Affected ranges

Type: GIT
Repo: https://github.com/kubernetes/kubernetes
Events: Last affected

2e808b7cb054ee242b68e62455323aa783991f03

Introduced

70132b0f130acc0bed193d9ba59dd186f0e634cf

Last affected

59603c6e503c87169aea6106f57b9f242f64df89

Introduced

2bd9643cee5b3b3a5ecbd3af49d09018f0773c77

Last affected

72c30166b2105cd7d3350f2c28a219e6abcd79eb

Affected versions

v1.*

v1.16.0

v1.16.1

v1.16.1-beta.0

v1.16.2

v1.16.2-beta.0

v1.16.3

v1.16.3-beta.0

v1.16.4

v1.16.4-beta.0

v1.16.5

v1.16.5-beta.0

v1.16.5-beta.1

v1.16.6

v1.16.6-beta.0

v1.17.0

v1.17.1

v1.17.1-beta.0

v1.17.2

v1.17.2-beta.0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-8552.json"