-
Currently it's possible to grant access to arbitrary resource in subscription by setting up owner.armId and Contributor role:
```yaml
spec:
owner:
armId: /subscriptions/00000000-0000-0000-…
-
I have been logging chat on my server and i have noticed some of my /root files written in chat log by some player while the folder was in /root/gtaserver (Yes, my bad, i ran the server as root in roo…
-
Containers shouldn't run with privilege escalation to root in your Kubernetes cluster.
The AllowPrivilegeEscalation attribute controls whether a process can gain more privileges than its parent proces…
-
### NCC-E003660-WV3: Privilege Escalation via `nodes/proxy` Permission
This issue was reported in the [Kubernetes 1.24 Security Audit Report](https://github.com/kubernetes/sig-security/blob/main/sig-…
-
Hi,
When I tried to install ODFE in a single node, there is a task which fail:
`TASK [../roles/opendistro/opendistro-elasticsearch : RedHat/CentOS/Fedora | Add OpenDistro repo] *******
fatal: […
-
Hi!
Currently, StackRox policies do not apply `allowPrivilegeEscalation` checks to init/ephemeral containers.
We request support for this setting to ensure privilege escalation restrictions are…
-
Please check and fix:
```
tk@bananapim3:~$ id
uid=1000(tk) gid=1000(tk) groups=1000(tk),20(dialout),27(sudo),29(audio),44(video),46(plugdev),108(netdev)
tk@bananapim3:~$ echo "rootmydevice" > /proc/s…
-
```
From: Jose Exposito Quintana
Date: Tue, Oct 29, 2024 at 5:16 PM
Subject: X.Org Security Advisory: Issues in X.Org X server prior to 21.1.14
and Xwayland prior to 24.1.4
To: ,
X.Org Sec…
-
(Copied from https://github.com/StackStorm/st2contrib/issues/330)
Running Ansible via StackStorm pack with [privilege escalation options](http://docs.ansible.com/ansible/become.html) like [`become`…
-
The current implementation defaults to the "read" mode when checking access permissions, which inadvertently grants users access to write, create, and unlink operations if they already have read acces…