CRE-2025-0069
Pods that mount NFS volumes and set `securityContext.fsGroup` still have the directory owned by `root\:root`. The kubelet does not chown the share, so non\-root containers fail with \"Permission denied\".
Pods that mount NFS volumes and set `securityContext.fsGroup` still have the directory owned by `root\:root`. The kubelet does not chown the share, so non\-root containers fail with \"Permission denied\".