Security Links
GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gst_opus_dec_parse_header function within `gstopusdec.c'. The pos array is a stack-allocated buffer of size 64. If n_channels exceeds 64, the for loop will write beyond the boundaries of the pos array. The value written will always be GST_AUDIO_CHANNEL_POSITION_NONE. This bug allows to overwrite the EIP address allocated in the stack. This vulnerability is fixed in 1.24.10.
#CONTAINER
Threat Matrix for Kubernetes

The purpose of the threat matrix for Kubernetes is to conceptualize the known tactics, techniques, and procedures (TTP) that adversaries may use against Kubernetes environments. Inspired from MITRE ATT&CK, the threat matrix for Kubernetes is designed to give quick insight into a potential TTP that an adversary may be using in their attack campaign. The threat matrix for Kubernetes contains also mitigations specific to Kubernetes environments and attack techniques.

https://microsoft.github.io/Threat-Matrix-for-Kubernetes/
Snyk Blog

Level up your open source & cloud native application security knowledge. Stay up to date with news & happenings in cloud, container, serverless security & more!

https://snyk.io/blog/
Kubernetes Goat

Interactive Kubernetes Security Learning Playground.

https://madhuakula.com/kubernetes-goat/
Kubenomicon

The Kubenomicon was born of a desire to understand more about Kubernetes from an offensive perspective. I found many great resources to aid in my journey, but I quickly realized.

https://kubenomicon.com/