Update Info

openSUSE-2026-118

Recommended update for etcd

Type: recommended
Severity: moderate
Issued: 2026-04-09
Description:
This update for etcd fixes the following issues:

- Update to version 3.6.10:
  * etcdserver: allow non-admin to fetch member list and alarms
  * Bump golang.org/x/image to v0.38.0 to resolve GO-2026-4815
  * Fix etcdctl endpoint command with option --cluster when auth is enabled

- Update to version 3.6.9:
  * dependency: Bump google.golang.org/grpc from v1.75.0 to 1.79.3
  * server/etcdserver: guard unauthenticated endpoints with auth checks
  * server/etcdserver: enforce auth checks for nested txn ops
  * build(deps): bump distroless/static-debian12 from `3f2b64e` to `20bc6c0`
  * Revert "Reuse events between sync loops"
  * Bump golang.org/x/net@ v0.51.0 fixes  GO-2026-4559
  * Don't reuse same ReadIndex
  * etcdctl: add license header
  * etcdctl: add unit test for Argify
  * etcdctl: fix slice bounds trimming single-quoted args
  * Add defer-recover block to prevent panic when cc is nil
  * Print the endpoint the grpc client connected to in unary interceptor
  * Fix race berween read index and leader change causing a stale read
  * server/etcdmain: fix deadlock issue for grpcproxy
  * dependency: bump go.opentelemetry.io/otel/sdk from v1.34.0 to v1.40.0
  * server/etcdserver/api/v3rpc: run metrics interceptors before handlers

- Update to version 3.6.8:
  * version: bump up to 3.6.8
  * [release-3.6] Bump go version to 1.24.13
  * Remove the use of grpc-go's Metadata field
  * Bump go version to 1.24.11
  * Keep the --snapshot-count flag
  * Remove flag --max-snapshots in 3.8 rather than 3.7
  * tools: explicitly require golang.org/x/tools/cmd/goimports
  * dependency: Bump golang.org/x/crypto from 0.42.0 to 0.45.0

- Update to version 3.6.7:
  * dependency: Bump golang.org/x/net from 0.38.0 to 0.45.0
  * Bump go to 1.24.11
  * Print token fingerprint instead of the original tokens in log messages

- Update to version 3.6.6:
  * v3rpc: add and use getServerMetrics() with global metricsServerCached
  * Fix the '--force-new-cluster' can't clean up learners issue
  * etcdserver: follow convention to extract auth token in cluster_util.go
  * etcdserver: fix cannot promote with auth from follower
  * Fix endpoint status not retuning the correct storage quota
  * server/embed: Log EOF on DEBUG in TLS handshake
  * Reject watch request with -1 revision and make rangeEvents safe against negative revision

References

No references

Packages

  • etcd-3.6.10-bp157.2.12.1