Skip to content

doc: add advisory for critical sev cve-2026-33186#396

Open
chrischangcode wants to merge 4 commits intoMicrosoftDocs:mainfrom
chrischangcode:cve-2026-33186
Open

doc: add advisory for critical sev cve-2026-33186#396
chrischangcode wants to merge 4 commits intoMicrosoftDocs:mainfrom
chrischangcode:cve-2026-33186

Conversation

@chrischangcode
Copy link

@chrischangcode chrischangcode commented Mar 20, 2026

Adds security bulletin advisory for gRPC vulnerability detected in many AKS modules

@prmerger-automator prmerger-automator bot requested a review from bcho March 20, 2026 17:48
@prmerger-automator
Copy link
Contributor

prmerger-automator bot commented Mar 20, 2026

@chrischangcode : Thanks for your contribution! The author(s) and reviewer(s) have been notified to review your proposed change.

@learn-build-service-prod
Copy link
Contributor

learn-build-service-prod bot commented Mar 20, 2026

Learn Build status updates of commit cff1c74:

✅ Validation status: passed

File Status Preview URL Details
articles/aks/security-bulletins/overview.md ✅Succeeded

For more details, please refer to the build report.

@learn-build-service-prod
Copy link
Contributor

learn-build-service-prod bot commented Mar 20, 2026

Learn Build status updates of commit 52f2b2b:

✅ Validation status: passed

File Status Preview URL Details
articles/aks/security-bulletins/overview.md ✅Succeeded

For more details, please refer to the build report.

@learn-build-service-prod
Copy link
Contributor

learn-build-service-prod bot commented Mar 20, 2026

Learn Build status updates of commit 8d70ff9:

✅ Validation status: passed

File Status Preview URL Details
articles/aks/security-bulletins/overview.md ✅Succeeded

For more details, please refer to the build report.

@Court72 Court72 requested a review from Copilot March 20, 2026 19:47
Copilot AI reviewed Mar 20, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Adds a new AKS security bulletin entry documenting CVE-2026-33186 (gRPC-Go authorization bypass) and updates the security bulletins page date so the advisory is discoverable from the central AKS bulletins index.

Changes:

  • Updated ms.date to reflect the latest bulletin publication.
  • Added bulletin AKS-2026-0002 with description, references, and affected/resolution guidance for CVE-2026-33186.
Comments suppressed due to low confidence (1)

articles/aks/security-bulletins/overview.md:8

  • The front matter is missing the required ai-usage entry. Since this PR adds a substantial new advisory section, please add ai-usage: ai-assisted (or ai-generated, as appropriate) to the YAML front matter to comply with Learn AI disclosure requirements.
---
title: Security bulletins for Azure Kubernetes Service (AKS)
description: This article provides security/vulnerability related updates and troubleshooting guides for Azure Kubernetes Services (AKS).
ms.date: 03/20/2026
author: bcho
ms.author: bahe
ms.topic: concept-article
ms.subservice: aks-security

@Court72
Copy link
Contributor

Court72 commented Mar 20, 2026

@bcho

Can you review the proposed changes?

Important: When the changes are ready for publication, adding a #sign-off comment is the best way to signal that the PR is ready for the review team to merge.

#label:"aq-pr-triaged"
@MicrosoftDocs/public-repo-pr-review-team

@learn-build-service-prod
Copy link
Contributor

learn-build-service-prod bot commented Mar 20, 2026

Learn Build status updates of commit 668f484:

✅ Validation status: passed

File Status Preview URL Details
articles/aks/security-bulletins/overview.md ✅Succeeded

For more details, please refer to the build report.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@bcho bcho Awaiting requested review from bcho

Assignees

@bcho bcho

Labels

aks-security/subsvc aq-pr-triaged azure-kubernetes-service/svc Change sent to author do-not-merge

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@chrischangcode @Court72 @bcho