reports/GO-2021-0065.yaml - vulndb - Git at Google

 packages:
   - module: k8s.io/client-go
     package: k8s.io/client-go/transport
     symbols:
       - debuggingRoundTripper.RoundTrip
     versions:
       - fixed: v0.17.0
   - module: k8s.io/kubernetes
     package: k8s.io/kubernetes/staging/src/k8s.io/client-go/transport
     symbols:
       - debuggingRoundTripper.RoundTrip
     versions:
       - fixed: v1.16.0-beta.1
 description: |
     Authorization tokens may be inappropriately logged if the verbosity
     level is set to a debug level.
 published: 2021-04-14T20:04:52Z
 cves:
   - CVE-2019-11250
 links:
     pr: https://github.com/kubernetes/kubernetes/pull/81330
     commit: https://github.com/kubernetes/kubernetes/commit/4441f1d9c3e94d9a3d93b4f184a591cab02a5245
     context:
       - https://github.com/kubernetes/kubernetes/issues/81114
	packages:
	- module: k8s.io/client-go
	package: k8s.io/client-go/transport
	symbols:
	- debuggingRoundTripper.RoundTrip
	versions:
	- fixed: v0.17.0
	- module: k8s.io/kubernetes
	package: k8s.io/kubernetes/staging/src/k8s.io/client-go/transport
	symbols:
	- debuggingRoundTripper.RoundTrip
	versions:
	- fixed: v1.16.0-beta.1
	description: \|
	Authorization tokens may be inappropriately logged if the verbosity
	level is set to a debug level.
	published: 2021-04-14T20:04:52Z
	cves:
	- CVE-2019-11250
	links:
	pr: https://github.com/kubernetes/kubernetes/pull/81330
	commit: https://github.com/kubernetes/kubernetes/commit/4441f1d9c3e94d9a3d93b4f184a591cab02a5245
	context:
	- https://github.com/kubernetes/kubernetes/issues/81114