A security issue was discovered in Kubernetes where users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using containers, init containers, and ephemeral containers with the envFrom field populated. Affected Versions Kubernetes < 1.27.12 Kubernetes < 1.28.8 Kubernetes < 1.29.3
Created golang-k8s-kubernetes tracking bugs for this issue: Affects: fedora-38 [bug 2275405]