昨天一个新的漏洞发布了，因为是Go语言的漏洞，并且kubernete是用Go写的

A security issue has been found in the net/http library of the Go language that affects all versions and all components of Kubernetes. The vulnerabilities can result in a DoS against any process with an HTTP or HTTPS listener.

这个漏洞会影响所有的组件和所有的版本

Am I vulnerable?

Yes. All versions of Kubernetes are affected.

Go has released versions go1.12.8 and go1.11.13, and we have released the following versions of Kubernetes built using patched versions of Go.

Kubernetes v1.15.3 – go1.12.9
Kubernetes v1.14.6 – go1.12.9
Kubernetes v1.13.10 – go1.11.13

如何修复：

升级到最近版本

Upgrade to a patched version of Kubernetes, listed above.

 

原文地址：

https://discuss.kubernetes.io/t/security-release-of-kubernetes-v1-15-3-v1-14-6-v1-13-10-cve-2019-9512-and-cve-2019-9514/7596