CVE-2025-1767
1 minute read
This vulnerability allows unsafe local repository paths in gitRepo volume configuration. KLTS backports the validation that rejects local/absolute repository paths.
Scope
Affected range in upstream metadata: all Kubernetes versions.
CVSS scores
This vulnerability is rated as medium-risk with a CVSS score of 6.5.
Fixed by official
Fixed by KLTS
- v1.32.13-lts.1 CVE-2025-1767.patch
- v1.31.14-lts.1 CVE-2025-1767.patch
- v1.30.14-lts.1 CVE-2025-1767.patch
- v1.29.15-lts.1 CVE-2025-1767.patch
- v1.28.15-lts.2 CVE-2025-1767.patch
- v1.27.16-lts.1 CVE-2025-1767.patch
- v1.26.15-lts.1 CVE-2025-1767.patch
- v1.25.16-lts.1 CVE-2025-1767.patch
- v1.24.17-lts.1 CVE-2025-1767.patch
- v1.23.17-lts.1 CVE-2025-1767.patch
- v1.22.17-lts.1 CVE-2025-1767.patch
- v1.21.14-lts.2 CVE-2025-1767.patch
- v1.20.15-lts.3 CVE-2025-1767.patch
- v1.19.16-lts.4 CVE-2025-1767.patch
- v1.18.20-lts.3 CVE-2025-1767.patch
- v1.17.17-lts.3 CVE-2025-1767.patch
- v1.16.15-lts.3 CVE-2025-1767.patch
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.
Last modified
April 15, 2026
: docs: sync recent kubernetes-lts releases and CVEs (5ee2b8f3)