search

go-kit / kit

A standard library for microservices.
https://gokit.io
MIT License
26.35k stars 2.42k forks source link

Security vuln CVE-2022-34038 affecting go etcd client #1271

Closed malfple closed 10 months ago

malfple commented 10 months ago

What would you like?

go.etcd.io/etcd/client/v3 with version < 3.5.5 allows attackers to DoS: CVE-2022-34038

Following are the direct dependencies:

Fixable by updating to a newer version

malfple commented 10 months ago

Proposed fix: https://github.com/go-kit/kit/pull/1272