Bug 33143

Summary: kubernetes new security issue CVE-2024-3177
Product: Mageia Reporter: Nicolas Salguero <nicolas.salguero>
Component: SecurityAssignee: Bruno Cornec <bruno>
Status: NEW --- QA Contact: Sec team <security>
Severity: normal    
Priority: Normal    
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: MGA9TOO
Source RPM: kubernetes-1.27.3-1.mga9.src.rpm CVE: CVE-2024-3177
Status comment: Fixed upstream in 1.27.13

Description Nicolas Salguero 2024-04-25 16:33:52 CEST 
Fedora has issued an advisory on April 25:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WL54MTLGMTBZZO5PYGEGEBERTMADC4WC/

The problem is fixed in version 1.27.13.

Mageia 9 is also affected.
Nicolas Salguero 2024-04-25 16:34:48 CEST

Whiteboard: (none) => MGA9TOO
Source RPM: (none) => kubernetes-1.27.3-1.mga9.src.rpm
Status comment: (none) => Fixed upstream in 1.27.13
CVE: (none) => CVE-2024-3177

Comment 1 Lewis Smith 2024-04-28 20:47:59 CEST 
Bruno looks to maintain this pkg, so assigning the update to you.

Assignee: bugsquad => bruno