The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17.8 and 1.18.0-1.18.5 do not account for disk usage by a pod which writes to its own /etc/hosts file. The /etc/hosts file mounted in a pod by kubelet is not included by the kubelet eviction manager when calculating ephemeral storage usage by a pod. If a pod writes a large amount of data to the /etc/hosts file, it could fill the storage space of the node and cause the node to fail.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: kubernetes

Published: 2020-07-23T16:59:38.580465Z

Updated: 2024-09-17T03:14:05.177Z

Reserved: 2020-02-03T00:00:00

Link: CVE-2020-8557

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-07-23T17:15:12.513

Modified: 2024-11-21T05:39:01.667

Link: CVE-2020-8557

cve-icon Redhat

Severity : Moderate

Publid Date: 2020-07-15T00:00:00Z

Links: CVE-2020-8557 - Bugzilla