Debian Patches
Status for kubernetes/1.20.5+really1.20.2-1.1+deb12u1
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 0001-Hide-long-and-multiline-strings-when-printing.patch | Currently both long strings and multiline strings can potentially "break" printing. I'm adding extra formatting to ensure we cut strings either at newline or at 100 chars with information that more information is available. |
Maciej Szulik <maszulik@redhat.com> | no | upstream, https://github.com/kubernetes/kubernetes/pull/103514 | 2021-07-06 | |
| 0002-Restore-ability-to-print-long-strings.patch | Remove arbitrary string length truncation in table printer This patch removes the 100-character limit (maxStringLength) that was previously applied to string values in kubectl table output. . Now strings are only truncated allowing full display of long strings without arbitrary length restrictions. |
Jordan Liggitt <liggitt@google.com> | no | upstream, https://github.com/kubernetes/kubernetes/pull/103574 | 2021-07-08 | |
| CVE-2021-25743.patch | Escape terminal special characters in kubectl (#112553) * Escape terminal special characters in kubectl * Add escaping for kubectl alpha events This patch backports the upstream fix for CVE-2021-25743 from Kubernetes commit dad0e937c0f76344363eb691b2668490ffef8537 to kubectl version 1.20.2, authored by David Leadbeater <dgl@dgl.cx>, merged into upstream master. The vulnerability involved potential terminal escape sequence attacks in kubectl output, which could allow malicious input to execute unintended terminal behavior when rendered. References: * Security tracker: https://security-tracker.debian.org/tracker/CVE-2021-25743 * Upstream issue: https://github.com/kubernetes/kubernetes/issues/101695 * Upstream PR: https://github.com/kubernetes/kubernetes/pull/112553 * Commit: https://github.com/kubernetes/kubernetes/commit/dad0e937c0f76344363eb691b2668490ffef8537 Backporting required manual adjustments due to version differences between Kubernetes master and 1.20.2. Specifically, the kubectl events command did not exist in 1.20.2, so associated files were omitted. Backporting changes: * Removed event printer files - staging/src/k8s.io/kubectl/pkg/cmd/events/event_printer.go - staging/src/k8s.io/kubectl/pkg/cmd/events/event_printer_test.go These files from the upstream patch relate to kubectl alpha events, which was not present in version 1.20.2. * Updated patch offsets and contexts. |
David Leadbeater <dgl@dgl.cx> | no | 2022-10-31 |
All known versions for source package 'kubernetes'
- 1.33.4+ds-1 (sid)
- 1.32.3+ds-2 (trixie, forky)
- 1.20.5+really1.20.2-1.1+deb12u1 (bookworm)