GHSA-65rp-cv85-263x
Suggest an improvement- Source
- https://github.com/advisories/GHSA-65rp-cv85-263x
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/08/GHSA-65rp-cv85-263x/GHSA-65rp-cv85-263x.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-65rp-cv85-263x
- Withdrawn
- 2023-10-09T21:46:43Z
- Published
- 2023-08-22T21:30:26Z
- Modified
- 2024-03-21T17:58:17Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- etcd denial of service vulnerability
- Details
-
Etcd v3.5.4 allows remote attackers to cause a denial of service via function PageWriter.write in pagewriter.go
- Database specific
{ "cwe_ids": [ "CWE-787" ], "nvd_published_at": "2023-08-22T19:16:23Z", "github_reviewed": true, "severity": "HIGH", "github_reviewed_at": "2023-08-23T13:25:22Z" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2022-34038
- https://github.com/golang/vulndb/issues/2016#issuecomment-1698677762
- https://github.com/etcd-io/etcd/pull/14022
- https://github.com/etcd-io/etcd/pull/14452
- https://github.com/etcd-io/etcd/commit/5a315ef88fbfa454e02d27b0b8acb4f89457cd90
- https://github.com/etcd-io/etcd
- https://go-review.googlesource.com/c/vulndb/+/524456
- https://go-review.googlesource.com/c/vulndb/+/524456/2/data/excluded/GO-2023-2016.yaml
Affected packages
Go / go.etcd.io/etcd/v3
Package
- Name
- go.etcd.io/etcd/v3
- View open source insights on deps.dev
- Purl
- pkg:golang/go.etcd.io/etcd/v3