Open korniko98 opened 8 months ago
Issues affecting the default configuration of GKE's logging agent FluentBit, which runs by default on all clusters, and the default privileges for Anthos Service Mesh (ASM), which is an optional add-on that customers can enable.
https://unit42.paloaltonetworks.com/google-kubernetes-engine-privilege-escalation-fluentbit-anthos/ https://cloud.google.com/anthos/clusters/docs/security-bulletins#gcp-2023-047
Summary (give a brief description of the issue)
Issues affecting the default configuration of GKE's logging agent FluentBit, which runs by default on all clusters, and the default privileges for Anthos Service Mesh (ASM), which is an optional add-on that customers can enable.
References (provide links to blogposts, etc.)
https://unit42.paloaltonetworks.com/google-kubernetes-engine-privilege-escalation-fluentbit-anthos/ https://cloud.google.com/anthos/clusters/docs/security-bulletins#gcp-2023-047