SUSE Blog

Tag: Exploits

Avatar photo
By: Glen Kosaka

April 3, 2024 1:56 pm

5,117 views

How NeuVector Can Protect Against the XZ Backdoor Attack CVE-2024-3094 in Kubernetes Environments

Security researcher Andres Freund reported to Debian that the xz/liblzma library had been backdoored. As a result, CVE-2024-3094 was published with a critical CVSS score of 10. This vulnerability stems from a supply chain compromise on versions 5.6.0 and 5.6.1 of XZ Utils. XZ Utils is data compression software included in […]

Read More

Tags: , , , , , , , , ,

Categories: Containers, Featured Content, Featured Content Main, Kubernetes, Security, SUSE Blog, SUSE Security

Avatar photo
By: Glen Kosaka

December 12, 2021 1:29 pm

5,367 views

Critical Vulnerability in Apache Log4j 2 (CVE-2021-44228)

A critical, high severity vulnerability (CVSS v3.0 10/10 rating) in the Apache Log4j open source Java logging library was disclosed Thursday, December 9 on the foundation’s github page. On Wednesday, Dec 15 a new vulnerability CVE-2021-45046 was published and patched, according to this article. This was the result of an incomplete initial patch […]

Read More

Tags: , , , ,

Categories: Security, SUSE Security

Avatar photo
By: Glen Kosaka

March 22, 2018 12:28 pm

2,223 views

Kubernetes System Security – Protecting Against Kubelet Exploits

By Andson Tung As critical as it is to protect application containers deployed by Kubernetes, it is just as critical to protect the Kubernetes system containers from attacks or from being used in an attack. In this post I’ll focus on one important Kubernetes security area – protecting the Kubelet, which manages the pods […]

Read More

Tags: , ,

Categories: SUSE Security

    Section Title

    Search

    Social Media

    Recent Posts Title

    Recent Blog Posts

    Recent Posts

    Popular Posts Title

    Popular Blog Posts

    Popular Posts

    Categories

    Archives

    About Links

    SUSE History
    SUSE Management Team
    SUSE Logos & Imagery