Reproducer for CVE-2020-14386
Pre-built container: registry.svc.ci.openshift.org/coreos/cve-2020-14386
You probably want to test against an explicit node, like this:
apiVersion: v1
kind: Pod
metadata:
name: cve-2020-14386
spec:
nodeName: <yournode>
containers:
- name: cve-2020-14386
image: registry.svc.ci.openshift.org/coreos/cve-2020-14386
imagePullPolicy: Always
Replace yournode
with a particular node you want to validate.
If your kernel is vulnerable, the node may crash or reboot.