High severityNVD Advisory· Published Aug 22, 2023· Updated Oct 3, 2024
CVE-2022-34038
CVE-2022-34038
Description
Etcd v3.5.4 allows remote attackers to cause a denial of service via function PageWriter.write in pagewriter.go. NOTE: the vendor's position is that this is not a vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
go.etcd.io/etcd/v3Go | < 3.5.5 | 3.5.5 |
Affected products
3- Etcd/Etcddescription
- osv-coords2 versions
>= 3.5.4, < 3.5.5+ 1 more
- (no CPE)range: >= 3.5.4, < 3.5.5
- (no CPE)range: < 3.5.5
Patches
Vulnerability mechanics
References
8- github.com/advisories/GHSA-65rp-cv85-263xghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-34038ghsaADVISORY
- github.com/etcd-io/etcd/commit/5a315ef88fbfa454e02d27b0b8acb4f89457cd90ghsaWEB
- github.com/etcd-io/etcd/pull/14022ghsaWEB
- github.com/etcd-io/etcd/pull/14452ghsaWEB
- github.com/golang/vulndb/issues/2016ghsaWEB
- go-review.googlesource.com/c/vulndb/+/524456ghsaWEB
- go-review.googlesource.com/c/vulndb/+/524456/2/data/excluded/GO-2023-2016.yamlghsaWEB
News mentions
0No linked articles in our index yet.