Upstream information

CVE-2019-3682 at MITRE

Description

The docker-kubic package in SUSE CaaS Platform 3.0 before 17.09.1_ce-7.6.1 provided access to an insecure API locally on the Kubernetes master node.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having low severity.

No SUSE Bugzilla entries cross referenced.

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE CaaS Platform 3.0
  • docker-kubic >= 17.09.1_ce-7.6.1
  • kubernetes-salt >= 3.0.0+git_r931_9cdca5a-3.47.1
  • sles12-velum-image >= 3.1.9-3.33.4
Patchnames:
SUSE-CAASP-3.0-2019-416