The Kubernetes kube-controller-manager in versions v1.0-v1.17 is vulnerable to a credential leakage via error messages in mount failure logs and events for AzureFile and CephFS volumes. Reference: https://github.com/kubernetes/kubernetes/pull/88684
This patch was first included in origin in this commit: https://github.com/openshift/origin/commit/16abec0d471f3c40e04622210edba33d43f21704
Created origin tracking bugs for this issue: Affects: fedora-all [bug 1860210]
Statement: OpenShift Container Platform (OCP) included the upstream patch for this flaw in the release of version 4.5. Prior versions are affected as OCP 4 supports AzureFile volumes and OCP 3 supports both AzureFile and CephFS volumes. OCP clusters not using these volume types are not vulnerable.