Lucene search
Veracode Vulnerability DatabaseVERACODE:29753HistoryMar 18, 2021 - 6:52 a.m.
Denial Of Service (DoS)
2021-03-1806:52:10
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
21
etcd
vulnerability
panic
decoderecord
validation
record size
EPSS
0.001
Percentile
36.3%
etcd is vulnerable to denial of service. A panic occurs in decodeRecord method when a large slice is processed due to a lack of validation on the size of record.
References
access.redhat.com/errata/RHSA-2021:0916
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1868883
github.com/etcd-io/etcd/security/advisories/GHSA-p4g4-wgrh-qrg2
lists.fedoraproject.org/archives/list/[email protected]/message/L6B6R43Y7M3DCHWK3L3UVGE2K6WWECMP/
Related
gitlab
gitlab
Improper Input Validation in etcd
2023-02-07 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-08-06 06:19:36
cve
cve
CVE-2020-15106
2020-08-05 19:15:10
osv
osv
CGA-qqqh-524x-wg52
2024-06-06 12:26:19
BIT-etcd-2020-15106
2024-03-06 10:52:40
Panic due to malformed WALs in go.etcd.io/etcd
2023-02-07 22:59:30
cgr
cgr
CVE-2020-15106 vulnerabilities
2024-05-19 03:07:16
nvd
nvd
CVE-2020-15106
2020-08-05 19:15:10
prion
prion
Design/Logic Flaw
2020-08-05 19:15:00
github
github
Panic due to malformed WALs in go.etcd.io/etcd
2023-02-07 22:59:30
cbl_mariner
cbl_mariner
CVE-2020-15106 affecting package etcd for versions less than 3.5.0-3
2022-04-09 06:52:04
redhatcve
redhatcve
CVE-2020-15106
2020-08-14 06:43:31
debiancve
debiancve
CVE-2020-15106
2020-08-05 19:15:10
cvelist
cvelist
CVE-2020-15106 Improper Input Validation in etcd
2020-08-05 19:05:13
ubuntucve
ubuntucve
CVE-2020-15106
2020-08-05 00:00:00
wolfi
wolfi
CVE-2020-15106 vulnerabilities
2024-10-01 09:27:37
nessus
nessus
RHEL 7 : etcd (RHSA-2021:1407)
2021-04-27 00:00:00
Photon OS 3.0: Etcd PHSA-2020-3.0-0130
2024-07-22 00:00:00
Ubuntu 18.04 ESM : etcd vulnerabilities (USN-5628-2)
2023-10-16 00:00:00
redhat
redhat
(RHSA-2021:1407) Moderate: etcd security update
2021-04-27 16:05:53
ibm
ibm
Security Bulletin: IBM Cloud Private is vulnerable to etcd vulnerabilities (CVE-2020-15106, CVE-2020-15112, CVE-2020-15113)
2021-02-26 14:21:09
Security Bulletin: IBM API Connect is vulnerable to denial of service (DoS) via etcd (CVE-2020-15106 CVE-2020-15112 CVE-2020-15113)
2021-02-02 13:37:27
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 18:36:46
openvas
openvas
Ubuntu: Security Advisory (USN-5628-2)
2023-01-27 00:00:00
Ubuntu: Security Advisory (USN-5628-1)
2022-09-23 00:00:00
Fedora: Security Advisory for etcd (FEDORA-2020-cd43b84c16)
2021-01-11 00:00:00
ubuntu
ubuntu
etcd vulnerabilities
2022-09-22 00:00:00
etcd vulnerabilities
2022-09-22 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2020-0130
2020-08-25 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0130
2020-08-25 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: etcd-3.4.13-1.fc32
2021-01-04 01:18:15
altlinux
altlinux
Security fix for the ALT Linux 10 package etcd version 3.4.13-alt1
2020-09-05 00:00:00