Lucene search
RedHatRHSA-2024:2729HistoryMay 22, 2024 - 8:32 p.m.
(RHSA-2024:2729) Important: Red Hat OpenStack Platform 17.1 (etcd) security update
2024-05-2220:32:30
access.redhat.com
1
red hat openstack
etcd
security update
memory leaks
denial of service
cve page listed
A highly-available key value store for shared configuration
Security Fix(es):
-
golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)
-
net/http/internal: Denial of Service (DoS) via Resource Consumption via
HTTP requests (CVE-2023-39326) -
crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges.
(CVE-2023-45287) -
net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS (CVE-2023-45288)
-
etcd: Incomplete fix for CVE-2023-39325/CVE-2023-44487 in OpenStack Platform (CVE-2024-4438)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 9 | x86_64 | etcd-debugsource | < 3.4.26-8.el9ost | etcd-debugsource-3.4.26-8.el9ost.x86_64.rpm |
| RedHat | 9 | x86_64 | etcd | < 3.4.26-8.el9ost | etcd-3.4.26-8.el9ost.x86_64.rpm |
| RedHat | 9 | x86_64 | etcd-debuginfo | < 3.4.26-8.el9ost | etcd-debuginfo-3.4.26-8.el9ost.x86_64.rpm |
Related
nessus
nessus
RHEL 9 : Red Hat OpenStack Platform 17.1 (etcd) (RHSA-2024:2729)
2024-05-22 00:00:00
RHEL 9 : OpenShift Container Platform 4.15.z (RHSA-2023:7200)
2024-02-27 00:00:00
redhat
redhat
redhatcve
redhatcve
cve
cve
CVE-2024-4438
2024-05-08 09:15:09
nvd
nvd
CVE-2024-4438
2024-05-08 09:15:09
CVE-2023-6596
2024-04-25 16:15:10
ubuntucve
ubuntucve
CVE-2024-4438
2024-05-08 00:00:00
CVE-2023-44487
2023-10-10 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
almalinux
almalinux
Moderate: buildah security update
2024-04-30 00:00:00
Moderate: containernetworking-plugins security update
2024-04-30 00:00:00
Moderate: podman security update
2024-04-30 00:00:00
oraclelinux
oraclelinux
buildah security update
2024-05-03 00:00:00
podman security update
2024-05-03 00:00:00
containernetworking-plugins security update
2024-05-02 00:00:00
osv
osv
Moderate: containernetworking-plugins security update
2024-04-30 00:00:00
Moderate: buildah security update
2024-04-30 00:00:00
Moderate: podman security update
2024-04-30 00:00:00
amazon
amazon
Medium: golist
2024-05-23 22:04:00
Important: golang
2023-10-16 13:45:00
Important: golang
2023-10-16 13:45:00
rocky
rocky
go-toolset:rhel8 security update
2023-10-24 18:35:47
toolbox security update
2023-11-11 23:00:15
grafana security update
2023-10-24 18:35:47
ibm
ibm
Security Bulletin: IBM Cloud Kubernetes Service is affected by Kubernetes API server security vulnerabilities (CVE-2023-39325 and CVE-2023-44487)
2023-12-08 09:00:02
openvas
openvas
openSUSE: Security Advisory for go1.21 (SUSE-SU-2023:4069-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for go1.20 (SUSE-SU-2023:4068-1)
2024-03-04 00:00:00
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2024-1082)
2024-01-09 00:00:00
github
github
Traefik vulnerable to HTTP/2 request causing denial of service
2023-10-17 02:37:42
freebsd
freebsd
traefik -- Resource exhaustion by malicious HTTP/2 client
2023-10-10 00:00:00