Security Archives - The Stack Observer

Category: Security

IngressNightmare: Critical RCE Vulnerabilities in Kubernetes NGINX Ingress Controller

March 19, 2026•Stackxx•Kubernetes, Security

Five critical vulnerabilities dubbed IngressNightmare affect Kubernetes NGINX Ingress Controller versions prior to 1.12.1, with CVE-2025-1974 enabling unauthenticated RCE. Patch immediately.

Security: Ubuntu’s CrackArmor fixes deserve a real runbook if you run Kubernetes or OpenStack on Ubuntu

March 13, 2026•Stackxx•Security

Canonical’s new AppArmor guidance makes the priority clear: apply both kernel updates and userspace mitigations, especially where attacker-controlled containers may run. The practical lesson for platform teams is that host hardening advice is only useful if it becomes an explicit patch-and-reboot workflow with exposure checks.