Google Cloud SQL Incident

john373865y ago· 3 in thread

Can it be link to CVE-2021-3156 ?

10 years old sudo vulnerability.

No, it can’t. To exploit this vulnerability, you need the ability to run shell commands/arbitrary code on the system. Google Cloud SQL only lets you run SQL, and I would expect the servers to be locked down pretty heavily when it comes to non-database stuff.

js4ever5y ago

Or maybe it can! Dropping a shell in Cloud SQL: https://news.ycombinator.com/item?id=24216009

john373865y ago

Thanks for the info. It must be a coincidence then. The timing looked like there was a possibility

1 more reply

ashr5y ago· 1 in thread

Looks like something common between the control plane and data plane failed or there is a run-time dependency between the two (bad!) and that dependency failed.

curiousDog5y ago

how did you conclude that? Also, why is it bad to have common runtime dependencies between two services? Unless you mean a shared service.

zachberger5y ago

> Instance creation, operations, and queries in us-central1 region may result in 502 (backend timeout) or 503 (service unavailable) errors.

tzury5y ago

https://status.cloud.google.com/incident/cloud-sql/21002

nwsm5y ago

Not seeing any issues in my side project's instance (us-central1-b).

markyc5y ago

also discussed here: https://news.ycombinator.com/item?id=25960649

Google Cloud SQL Incident (opens in new tab)

Google Cloud SQL Incident (opens in new tab)

11 comments

11 comments