You are viewing a previous version of this security bulletin. For the most current version please visit: "Kubernetes Security Issue (CVE-2018-1002105)".
December 4, 2018 1:00 PM PST
AWS is aware of a recent security issue within Kubernetes, assigned CVE identifier CVE-2018-1002105. Amazon Elastic Container Service for Kubernetes (EKS) manages the Kubernetes control plane on behalf of customers. Any new clusters launched after 2:00 PM PST on December 4, 2018 will be launched with the patched version of Kubernetes that mitigates the issue. We have started updating existing clusters with the patched version and expect to be patched by 12:00 PM PST on December 5, 2018. We will update this bulletin when all environments have been patched. No customer action is required to receive these updates.