Blackduck reports BDSA-2023-0791 (CWE-287) on etcd v3.5.6 #1549

beards · 2023-05-10T04:21:17Z

beards
May 10, 2023

Hi,

As title, we get Blackduck report that etcd v3.5.6 contains a privilege escalation vulnerability.
May I know that do you have plan to upgrade it?
Blackduck said that v3.5.8 should be OK.

Answered by sagikazarmark

May 10, 2023

Thanks for reporting! We will update etcd soon.

View full answer

sagikazarmark · 2023-05-10T16:28:01Z

sagikazarmark
May 10, 2023
Collaborator

Thanks for reporting! We will update etcd soon.

0 replies

paulohenriquesg · 2023-07-20T06:48:05Z

paulohenriquesg
Jul 20, 2023

Hi all!

Do you have some timeframe when this update is going to happen? Is there anything we can do to help?

Thank you! :)

1 reply

sagikazarmark Jul 21, 2023
Collaborator

@paulohenriquesg thanks for the ping!

I updated the library on the main branch. I'm going to tag a new release in the coming days.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Blackduck reports BDSA-2023-0791 (CWE-287) on etcd v3.5.6 #1549

{{title}}

Replies: 2 comments 1 reply

{{title}}

{{title}}

{{title}}

Select a reply

Blackduck reports BDSA-2023-0791 (CWE-287) on etcd v3.5.6 #1549

beards May 10, 2023

Replies: 2 comments · 1 reply

sagikazarmark May 10, 2023 Collaborator

paulohenriquesg Jul 20, 2023

sagikazarmark Jul 21, 2023 Collaborator

beards
May 10, 2023

Replies: 2 comments 1 reply

sagikazarmark
May 10, 2023
Collaborator

paulohenriquesg
Jul 20, 2023

sagikazarmark Jul 21, 2023
Collaborator