A vulnerability in one of the Go libraries that Kubernetes is based on could lead to denial of service (DoS) for the CRI-O and Podman container engines. The vulnerability affects the Go library called containers/storage It can be triggered by placing a malicious image inside a registry; the DoS condition is created when that image is pulled from the registry by an unsuspecting user. The security researcher at Palo Alto s Unit 42 team found the flaw.
Source: https://threatpost.com/security-bug-brick-kubernetes-clusters/165413/