Affected by GO-2022-0617
and 22 other vulnerabilities
GO-2022-0617: WITHDRAWN: Potential proxy IP restriction bypass in Kubernetes in k8s.io/kubernetes
GO-2022-0867: Allocation of Resources Without Limits or Throttling and Uncontrolled Memory Allocation in Kubernetes in k8s.io/kubernetes
GO-2022-0885: Improper Authentication in Kubernetes in k8s.io/kubernetes
GO-2022-0890: Server Side Request Forgery (SSRF) in Kubernetes in k8s.io/kubernetes
GO-2022-0907: Access Restriction Bypass in kube-apiserver in k8s.io/kubernetes
GO-2022-0908: Incomplete List of Disallowed Inputs in Kubernetes in k8s.io/kubernetes
GO-2022-0910: Files or Directories Accessible to External Parties in kubernetes in k8s.io/kubernetes
GO-2022-0983: kubectl ANSI escape characters not filtered in k8s.io/kubernetes
GO-2023-1864: Kubelet vulnerable to bypass of seccomp profile enforcement in k8s.io/kubernetes
GO-2023-1891: kube-apiserver vulnerable to policy bypass in k8s.io/kubernetes
GO-2023-1892: Kubernetes mountable secrets policy bypass in k8s.io/kubernetes
GO-2023-2159: Kube-proxy may unintentionally forward traffic in k8s.io/kubernetes
GO-2023-2341: Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes
GO-2024-2748: Privilege Escalation in Kubernetes in k8s.io/apimachinery
GO-2024-2753: Denial of service in Kubernetes in k8s.io/kubernetes
GO-2024-2754: Sensitive Information leak via Log File in Kubernetes in k8s.io/kubernetes
GO-2024-2755: Sensitive Information leak via Log File in Kubernetes in k8s.io/kubernetes
GO-2024-2994: Kubernetes sets incorrect permissions on Windows containers logs in k8s.io/kubernetes
GO-2024-3277: Kubernetes Nil pointer dereference in KCM after v1 HPA patch request in k8s.io/kubernetes
GO-2025-3465: Node Denial of Service via kubelet Checkpoint API in k8s.io/kubernetes
GO-2025-3521: Kubernetes GitRepo Volume Inadvertent Local Repository Access in k8s.io/kubernetes
GO-2025-3522: Kubernetes allows Command Injection affecting Windows nodes via nodes/*/logs/query API in k8s.io/kubernetes
GO-2025-3547: Kubernetes kube-apiserver Vulnerable to Race Condition in k8s.io/kubernetes
package
Version:
v1.16.6-beta.0
Opens a new window with list of versions in this module.
Published: Jan 11, 2020
License: Apache-2.0
Opens a new window with license information.
Imports: 6
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Documentation
¶
- Constants
-
func ClearEntriesForIP(execer exec.Interface, ip string, protocol v1.Protocol) error
-
func ClearEntriesForNAT(execer exec.Interface, origin, dest string, protocol v1.Protocol) error
-
func ClearEntriesForPort(execer exec.Interface, port int, isIPv6 bool, protocol v1.Protocol) error
-
func ClearEntriesForPortNAT(execer exec.Interface, dest string, port int, protocol v1.Protocol) error
-
func Exec(execer exec.Interface, parameters ...string) error
-
func Exists(execer exec.Interface) bool
View Source
const NoConnectionToDelete = "0 flow entries have been deleted"
NoConnectionToDelete is the error string returned by conntrack when no matching connections are found
ClearEntriesForIP uses the conntrack tool to delete the conntrack entries
for the UDP connections specified by the given service IP
ClearEntriesForNAT uses the conntrack tool to delete the conntrack entries
for connections specified by the {origin, dest} IP pair.
Exec executes the conntrack tool using the given parameters
Exists returns true if conntrack binary is installed.
Source Files
¶
Click to show internal directories.
Click to hide internal directories.