GHSA-M332-53R6-2W93 vulnerabilities

Vulnerabilities for packages: etcd, etcd-fips, dgraph...

PT-2026-26755

Name of the Vulnerable Software and Affected Versions etcd versions prior to 3.4.42 etcd versions prior to 3.5.28 etcd versions prior to 3.6.9 Description An authenticated user with Role-Based Access Control RBAC restricted permissions on key ranges can bypass key-level authorization using nested...

GHSA-5MH9-3JWC-RP59 vulnerabilities

Vulnerabilities for packages: aws-sigv4-proxy-fips, nri-discovery-kubernetes-fips, protoc-gen-go, skaffold, nova-fips, terraform-provider-sendgrid, dynamic-localpv-provisioner-fips, ipfs-cluster, helm-diff-fips, cfssl-fips, rancher-telemetry, sftpgo-plugin-eventsearch, opensearch-k8s-operator,...

Security Bulletin: IBM Storage Protect Server is susceptible to a vulnerability due to Golang CoreDNS library

Summary Golang CoreDNS library is used by the IBM Storage Protect Server OSSM component. Golang CoreDBS is vulnerable to Denial of service , This bulletin identifies the steps to address the vulnerabilities. CVE-2025-58063. Vulnerability Details CVEID:CVE-2025-58063 DESCRIPTION: CoreDNS is a DNS...

OPENSUSE-SU-2025:15764-1 etcd-for-k8s1.32-3.5.24-1.1 on GA media

These are all security issues fixed in the etcd-for-k8s1.32-3.5.24-1.1 package on the GA media of openSUSE Tumbleweed...

TencentOS Server 4: etcd (TSSA-2025:0331)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0331 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

ROS-20251020-07

The vulnerability of the DNS server responsible for resolving coredns names is related to an error in the TTL function in the plugin/etcd/etcd.go, which converts the 64-bit etcd lease identifier into uint32 type and uses it as TTL. it as TTL, which causes the cache to be fixed for very long perio...

Cache Poisoning

github.com/coredns/coredns is vulnerable to Cache Poisoning. The vulnerability is due to the etcd plugin incorrectly using 64-bit lease IDs as 32-bit TTL values in the TTL function, which allows an attacker to create very large TTLs that enable DNS cache pinning attacks, potentially causing a...

EUVD-2018-11735

Malware in sbrugna...

EUVD-2019-13410

Malware in sbrugna...

Unity Linux 20.1070e Security Update: etcd (UTSA-2025-680591)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680591 advisory. Authentication vulnerability found in Etcd-io v.3.4.10 allows remote attackers to escalate privileges via the debug function. Tenable has extracted the preceding...

EUVD-2023-0902

Malicious code in bioql PyPI...

EUVD-2022-7121

Malicious code in bioql PyPI...

EUVD-2022-7012

Malicious code in bioql PyPI...

EUVD-2023-1310

Malicious code in bioql PyPI...

EUVD-2022-1226

Malicious code in bioql PyPI...

EUVD-2023-1459

Malicious code in bioql PyPI...

EUVD-2022-0838

Malicious code in bioql PyPI...

EUVD-2022-1078

Malicious code in bioql PyPI...

EUVD-2024-44548

Malicious code in bioql PyPI...