RHSA-2022:0260: Important: Red Hat OpenStack Platform 16.1 (etcd) security update
A highly-available key value store for shared configurationSecurity Fix(es): net/http: limit growth of header canonicalization cache (CVE-2021-44716) net: incorrect parsing of extraneous zero characters at the beginning of an IP address octet (CVE-2021-29923) crypto/tls: certificate of wrong type is causing TLS client to panic (CVE-2021-34558)For more details about the security issue(s), including the impact, a CVSSscore, acknowledgments, and other related information, refer to the CVEpage listed in the References section.
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2022:0260?
RHSA-2022:0260 is classified as a moderate security vulnerability.
How do I fix RHSA-2022:0260?
To fix RHSA-2022:0260, update to etcd version 3.3.23-7.el8 or higher.
What vulnerabilities are addressed in RHSA-2022:0260?
RHSA-2022:0260 addresses CVE-2021-44716 and issues related to incorrect parsing of extraneous zero characters.
What software is affected by RHSA-2022:0260?
RHSA-2022:0260 affects the etcd package and its associated debuginfo and debugsource packages.
Is RHSA-2022:0260 a critical vulnerability?
No, RHSA-2022:0260 is not considered a critical vulnerability, but it should still be addressed.