A quick blogpost to show the danger of runc CVE-2024-21626 on Kubernetes. Most posts and POCs is saw focussed on Docker
but I wanted to see how big of an issue this CVE is on cloud native systems.
Maintaining and merging multiple kubeconfig files sucks, here is a quick post how I solved this issue.
Without using external tooling, just plain kubectl.
How to create a full reverse proxy just with ingress-nginx, no need for proxy containers on the cluster by using
a lesser knows ExternalName type Service