Usage subject to Terms and Conditions

CRI-O Security Update for Kubernetes

CRI-O Security Update for Kubernetes

Read the original article at https://us-cert.cisa.gov/ncas/current-activity/2022/03/18/cri-o-security-update-kubernetes

Original release date: March 18, 2022

CRI-O has released a security update addressing a critical vulnerability—CVE-2022-0811—in CRI-O 1.19. A local attacker could exploit this vulnerability to take control of an affected Kubernetes environment as well as other software or platforms that use CRI-O runtime containers.

CISA encourages users and administrators to review the CRI-O Security Advisory and apply the necessary updates or workarounds.

This product is provided subject to this Notification and this Privacy & Use policy.

Read the original article at https://us-cert.cisa.gov/ncas/current-activity/2022/03/18/cri-o-security-update-kubernetes