A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes.
Upstream issue: https://github.com/kubernetes/kubernetes/issues/121879
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.11 Via RHSA-2023:7662 https://access.redhat.com/errata/RHSA-2023:7662
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.12 Via RHSA-2023:7710 https://access.redhat.com/errata/RHSA-2023:7710
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.13 Via RHSA-2023:7709 https://access.redhat.com/errata/RHSA-2023:7709
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.15 Via RHSA-2024:0954 https://access.redhat.com/errata/RHSA-2024:0954
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.14 Via RHSA-2024:1203 https://access.redhat.com/errata/RHSA-2024:1203