Your submission was sent successfully! Close

CVE-2021-25743

Published: 7 January 2022

kubectl does not neutralize escape, meta or control sequences contained in the raw data it outputs to a terminal. This includes but is not limited to the unstructured string fields in objects such as Events.

Priority

Medium

CVSS 3 base score: 3.0

Status

Package Release Status
kubernetes
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Needs triage

hirsute Ignored
(reached end-of-life)
impish Needs triage

jammy Needs triage

trusty Does not exist

upstream Needs triage

xenial Does not exist

Notes

AuthorNote
leosilva
kubernates is in fact a kubernetes installer
that calls snap, not the package it self.

References