Vulnerability CVE-2024-45338: Information

Description

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service.

Severity: MEDIUM (5.3)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
URL: https://nvd.nist.gov/vuln/detail/CVE-2024-45338
Published: Dec. 18, 2024
Modified: April 15, 2026
Error type identifier: CWE-1333

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
etcdsisyphus3.5.23-alt13.5.28-alt1ALT-PU-2025-12972-3397100Fixed
etcdsisyphus_riscv643.5.23-alt13.5.28-alt1ALT-PU-2025-13440-1-Fixed
etcdsisyphus_loongarch643.5.23-alt13.5.28-alt1ALT-PU-2025-13169-1-Fixed
etcdp113.5.23-alt13.5.28-alt1ALT-PU-2025-16469-1397101Fixed
etcdp103.5.23-alt13.5.23-alt1ALT-PU-2025-16625-1397108Fixed
etcdc10f23.5.23-alt13.5.28-alt1ALT-PU-2025-13125-3397104Fixed
etcd-for-kubernetes1.31sisyphus3.5.24-alt13.5.24-alt1ALT-PU-2025-14421-3399893Fixed
etcd-for-kubernetes1.31sisyphus_riscv643.5.24-alt13.5.24-alt1ALT-PU-2025-14606-1-Fixed
etcd-for-kubernetes1.31sisyphus_loongarch643.5.24-alt13.5.24-alt1ALT-PU-2025-14569-1-Fixed
etcd-for-kubernetes1.31p113.5.24-alt13.5.24-alt1ALT-PU-2025-14824-4400587Fixed
etcd-for-kubernetes1.31c10f23.5.24-alt13.5.24-alt1ALT-PU-2025-14814-4400585Fixed
flannelsisyphus_riscv640.26.7-alt20.28.2-alt1ALT-PU-2025-7133-1-Fixed
flannelp110.27.0-alt10.28.2-alt1ALT-PU-2025-8447-4388007Fixed
flannelp100.27.3-alt10.27.3-alt1ALT-PU-2025-13603-4398481Fixed
flannelc10f20.26.7-alt20.28.2-alt1ALT-PU-2025-7125-4384896Fixed
portainersisyphus2.28.1-alt12.39.3-alt1ALT-PU-2025-4551-4378647Fixed
portainerc10f22.33.1-alt12.39.1-alt1ALT-PU-2025-10968-4393364Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://go.dev/cl/637536
    https://go.dev/issue/70906
      https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ
        https://pkg.go.dev/vuln/GO-2024-3333
          https://security.netapp.com/advisory/ntap-20250221-0001/
            BDU:2025-01010
            • BDU
            GHSA-w32m-9786-jp63
            • GHSA
            VKontakte|Telegram|YouTube|Forum|ALT Linux Space|Bugzilla
            Version: v26.6.1
            Back to top