(RHSA-2019:1352) Moderate: etcd security, bug fix, and enhancement update

2019-06-04T21:55:45
ID RHSA-2019:1352
Type redhat
Reporter RedHat
Modified 2019-06-04T23:06:05

Description

The etcd packages provide a highly available key-value store for shared configuration.

The following packages have been upgraded to a later upstream version: etcd (3.2.26). (BZ#1676902)

Security Fix(es):

  • etcd: Improper Authentication in auth/store.go:AuthInfoFromTLS() via gRPC-gateway (CVE-2018-16886)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.