Please read https://github.com/etcd-io/etcd/blob/main/security/README.md.
Security: etcd-io/etcd
Security
.github/SECURITY.md
-
Key name can be accessed via LeaseTimeToLive APIGHSA-3p4g-rcw5-8298 published
May 11, 2023 by mitakeLow -
TOCTOU of gateway endpoint authenticationGHSA-h8g9-6gvh-5mrc published
Aug 5, 2020 by spzalaLow -
Gateway TLS authentication only applies to endpoints detected in DNS SRV recordsGHSA-wr2v-9rpq-c35q published
Aug 5, 2020 by spzalaModerate -
Gateway TLS endpoint validation only confirms TCP reachabilityGHSA-j86v-2vjr-fg8f published
Aug 5, 2020 by spzalaModerate -
Gateway can include itself as an endpoint resulting in resource exhaustionGHSA-2xhq-gv6c-p224 published
Aug 5, 2020 by spzalaHigh -
User credentials are stored in WAL logs in plaintextGHSA-528j-9r78-wffx published
Aug 5, 2020 by spzalaLow -
No minimum password lengthGHSA-4993-m7g5-r9hh published
Aug 5, 2020 by spzalaModerate -
Insecure ciphers are allowed by defaultGHSA-5x4g-q5rc-36jp published
Aug 5, 2020 by spzalaLow -
A negative value for cluster node size results in an index out-of-bound panic during service discoveryGHSA-9gp7-6833-wv89 published
Aug 5, 2020 by spzalaLow -
Auto compaction retention negative value causing a compaction loop or a crashGHSA-pm3m-32r3-7mfh published
Aug 5, 2020 by spzalaLow
Learn more about advisories related to etcd-io/etcd in the GitHub Advisory Database