[ubuntu/kinetic-security] protobuf 3.12.4-1ubuntu7.22.10.1 (Accepted)
Nishit Majithia
nishit.majithia at canonical.com
Mon Mar 13 06:09:10 UTC 2023
protobuf (3.12.4-1ubuntu7.22.10.1) kinetic-security; urgency=medium
* SECURITY UPDATE: DoS in protobuf-java parser
- debian/patches/CVE-2021-22569.patch: Improve performance of parsing
unknown fields in Java
- CVE-2021-22569
* SECURITY UPDATE: Null pointer dereference issue
- debian/patches/CVE-2021-22570.patch: fix null pointer dereference
- CVE-2021-22570
* SECURITY UPDATE: Dos vulnerability in cpp and python parser
- debian/patches/CVE-2022-1941.patch: fix parsing vulnerability for the
MessageSet type
- CVE-2022-1941
Date: 2023-03-10 06:11:08.260504+00:00
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
https://launchpad.net/ubuntu/+source/protobuf/3.12.4-1ubuntu7.22.10.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the kinetic-changes
mailing list