Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS1oOGc5LTZndmgtNW1yY84AAvLt
etcd vulnerable to TOCTOU of gateway endpoint authentication
Vulnerability type
Authentication
Workarounds
Refer to the gateway documentation. The vulnerability was spotted due to unclear documentation of how the gateway handles endpoints validation.
Detail
The gateway only authenticates endpoints detected from DNS SRV records, and it only authenticates the detected endpoints once. Therefore, if an endpoint changes its authentication settings, the gateway will continue to assume the endpoint is still authenticated. The auditors has noted that appropriate documentation of this validation functionality plus deprecation of this misleading functionality is an acceptable path forward.
References
Find out more on this vulnerability in the security audit report
For more information
If you have any questions or comments about this advisory:
- Contact the etcd security committee
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1oOGc5LTZndmgtNW1yY84AAvLt
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Low
Classification: General
Published: 12 months ago
Updated: 9 months ago
Identifiers: GHSA-h8g9-6gvh-5mrc
References:
- https://github.com/etcd-io/etcd/security/advisories/GHSA-h8g9-6gvh-5mrc
- https://github.com/advisories/GHSA-h8g9-6gvh-5mrc
Affected Packages
go:go.etcd.io/etcd/v3
Versions: < 3.3.23, >= 3.4.0, < 3.4.10Fixed in: 3.3.23, 3.4.10