2351269 – (CVE-2025-1767) CVE-2025-1767 kubelet: GitRepo Volume Inadvertent Local Repository Access

Bug 2351269 (CVE-2025-1767) - CVE-2025-1767 kubelet: GitRepo Volume Inadvertent Local Repository Access

Summary: CVE-2025-1767 kubelet: GitRepo Volume Inadvertent Local Repository Access

Keywords:
Status:	NEW
Alias:	CVE-2025-1767
Deadline:	2025-07-12
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-03-11 02:54 UTC by OSIDB Bzimport
Modified:	2025-05-15 08:28 UTC (History)
CC List:	48 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-03-11 02:54:42 UTC

A security vulnerability was discovered in Kubernetes that could allow a user with create pod permission to exploit gitRepo volumes to access local git repositories belonging to other pods on the same node.

Note You need to log in before you can comment on or make changes to this bug.

adudiak
bkabrda
brking
crizzo
davidn
dfreiber
dranck
drow
gtanzill
haoli
hkataria
jajackso
jburrell
jcammara
jforrest
jkoehler
jmitchel
jneedle
jsamir
jwong
kaycoth
kegrant
koliveir
kshier
lball
ljawale
lphiri
luizcosta
mabashia
ngough
nweather
omaciel
pbraun
rbobbitt
security-response-team
shvarugh
simaishi
smcdonal
stcannon
sthirugn
teagle
tfister
thavo
ttakamiy
veshanka
vkrizan
vkumar
yguenane