Back to bug 2128858
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Sage McTaggart | 2022-09-21 17:31:14 UTC | Doc Text | A flaw was found in Openshift. A pod with a DNSPolicy of "ClusterFirst" may incorrectly resolve the hostname based off a service provided, which can allow an attacker to supply an incorrect name with the DNS search policy. This could enable an attacker to impact confidentiality and availability. | |
| CC | jburrell, vkumar | |||
| Sage McTaggart | 2022-09-21 17:31:33 UTC | Alias | CVE-2022-3262 | |
| Summary | openshift: insecure default DNSPolicy for pods | CVE-2022-3262 openshift: insecure default DNSPolicy for pods | ||
| RaTasha Tillery-Smith | 2022-09-21 18:41:02 UTC | Doc Text | A flaw was found in Openshift. A pod with a DNSPolicy of "ClusterFirst" may incorrectly resolve the hostname based off a service provided, which can allow an attacker to supply an incorrect name with the DNS search policy. This could enable an attacker to impact confidentiality and availability. | A flaw was found in Openshift. A pod with a DNSPolicy of "ClusterFirst" may incorrectly resolve the hostname based on a service provided. This flaw allows an attacker to supply an incorrect name with the DNS search policy, affecting confidentiality and availability. |
| Red Hat Bugzilla | 2023-04-29 08:27:57 UTC | CC | sttts | |
| Red Hat Bugzilla | 2023-07-07 08:35:15 UTC | Assignee | security-response-team | nobody |
Back to bug 2128858