CVE-2020-15112

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
05/08/2020
Last modified:
07/11/2023

Description

In etcd before versions 3.3.23 and 3.4.10, it is possible to have an entry index greater then the number of entries in the ReadAll method in wal/wal.go. This could cause issues when WAL entries are being read during consensus as an arbitrary etcd consensus participant could go down from a runtime panic when reading the entry.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:etcd:etcd:*:*:*:*:*:*:*:* 3.3.23 (excluding)
cpe:2.3:a:etcd:etcd:*:*:*:*:*:*:*:* 3.4.0 (including) 3.4.10 (excluding)
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*