Vulnerability Report: GO-2021-0066
- CVE-2020-8564, GHSA-8mjg-8c8g-6h85
- Affects: k8s.io/kubernetes
- Published: Apr 14, 2021
- Modified: Jun 12, 2023
Attempting to read a malformed .dockercfg may cause secrets to be inappropriately logged.
Affected Packages
-
PathVersionsSymbols
-
before v1.20.0-alpha.1all symbols
Aliases
References
- https://github.com/kubernetes/kubernetes/pull/94712
- https://github.com/kubernetes/kubernetes/commit/11793434dac97a49bfed0150b56ac63e5dc34634
- https://github.com/kubernetes/kubernetes/issues/95622
- https://vuln.go.dev/ID/GO-2021-0066.json
Credits
- @sfowl
Feedback
See anything missing or incorrect?
Suggest an edit to this report.