Requests for CVE numbers for components residing within https://github.com/kubernetes/kubernetes
should be directed to Jordan Liggitt (@liggitt) <[email protected]> [4096R/0x39928704103C7229].
CVE numbers are typically requested by the fix lead for a particular issue as part of the security release process.
The Kubernetes project is a registered Open Source CVE Numbering Authority (CNA) with the Distributed Weakness Filing Project (DWF).
CVE blocks allocated to the Kubernetes CNA are listed by year at https://github.com/distributedweaknessfiling/DWF-CNA-Registry/blob/master. For example, in 2019 the 1002100-1002149 block was allocated.