Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.AL2023_ALAS2023-2023-049.NASL
HistoryMar 21, 2023 - 12:00 a.m.

Amazon Linux 2023 : protobuf, protobuf-compiler, protobuf-devel (ALAS2023-2023-049)

2023-03-2100:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
JSON

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-049 advisory.

  • A parsing vulnerability for the MessageSet type in the ProtocolBuffers versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 3.21.5 for protobuf-cpp, and versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 4.21.5 for protobuf-python can lead to out of memory failures.
    A specially crafted message with multiple key-value per elements creates parsing issues, and can lead to a Denial of Service against services receiving unsanitized input. We recommend upgrading to versions 3.18.3, 3.19.5, 3.20.2, 3.21.6 for protobuf-cpp and 3.18.3, 3.19.5, 3.20.2, 4.21.6 for protobuf-python. Versions for 3.16 and 3.17 are no longer updated. (CVE-2022-1941)

  • A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a denial of service attack. Inputs containing multiple instances of non-repeated embedded messages with repeated or unknown fields causes objects to be converted back-n-forth between mutable and immutable forms, resulting in potentially long garbage collection pauses. We recommend updating to the versions mentioned above. (CVE-2022-3171)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux 2023 Security Advisory ALAS2023-2023-049.
##

include('compat.inc');

if (description)
{
  script_id(173134);
  script_version("1.0");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/03/21");

  script_cve_id("CVE-2022-1941", "CVE-2022-3171");

  script_name(english:"Amazon Linux 2023 : protobuf, protobuf-compiler, protobuf-devel (ALAS2023-2023-049)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Amazon Linux 2023 host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-049 advisory.

  - A parsing vulnerability for the MessageSet type in the ProtocolBuffers versions prior to and including
    3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 3.21.5 for protobuf-cpp, and versions prior to and including
    3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 4.21.5 for protobuf-python can lead to out of memory failures.
    A specially crafted message with multiple key-value per elements creates parsing issues, and can lead to a
    Denial of Service against services receiving unsanitized input. We recommend upgrading to versions 3.18.3,
    3.19.5, 3.20.2, 3.21.6 for protobuf-cpp and 3.18.3, 3.19.5, 3.20.2, 4.21.6 for protobuf-python. Versions
    for 3.16 and 3.17 are no longer updated. (CVE-2022-1941)

  - A parsing issue with binary data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6
    and 3.16.3 can lead to a denial of service attack. Inputs containing multiple instances of non-repeated
    embedded messages with repeated or unknown fields causes objects to be converted back-n-forth between
    mutable and immutable forms, resulting in potentially long garbage collection pauses. We recommend
    updating to the versions mentioned above. (CVE-2022-3171)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/AL2023/ALAS-2023-049.html");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/cve/html/CVE-2022-1941.html");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/cve/html/CVE-2022-3171.html");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/faqs.html");
  script_set_attribute(attribute:"solution", value:
"Run 'dnf update protobuf --releasever=2023.0.20230222 ' to update your system.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-3171");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/09/22");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/02/17");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/03/21");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-compiler");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-compiler-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-emacs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-lite");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-lite-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-lite-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-lite-static");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-static");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:protobuf-vim");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:python3-protobuf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:python3-protobuf-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux:2023");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Amazon Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var alas_release = get_kb_item("Host/AmazonLinux/release");
if (isnull(alas_release) || !strlen(alas_release)) audit(AUDIT_OS_NOT, "Amazon Linux");
var os_ver = pregmatch(pattern: "^AL(A|\d+|-\d+)", string:alas_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "-2023")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux 2023", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var pkgs = [
    {'reference':'protobuf-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-compiler-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-compiler-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-compiler-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-compiler-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-compiler-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-compiler-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-debugsource-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-debugsource-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-debugsource-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-devel-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-devel-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-devel-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-emacs-3.19.6-1.amzn2023.0.1', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-devel-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-devel-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-devel-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-static-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-static-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-lite-static-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-static-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-static-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-static-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'protobuf-vim-3.19.6-1.amzn2023.0.1', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'python3-protobuf-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'python3-protobuf-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'python3-protobuf-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'python3-protobuf-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'python3-protobuf-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'i686', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'python3-protobuf-debuginfo-3.19.6-1.amzn2023.0.1', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE}
];

var flag = 0;
foreach var package_array ( pkgs ) {
  var reference = NULL;
  var _release = NULL;
  var sp = NULL;
  var _cpu = NULL;
  var el_string = NULL;
  var rpm_spec_vers_cmp = NULL;
  var epoch = NULL;
  var allowmaj = NULL;
  var exists_check = NULL;
  if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
  if (!empty_or_null(package_array['release'])) _release = package_array['release'];
  if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
  if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
  if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
  if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
  if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
  if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
  if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
  if (reference && _release && (!exists_check || rpm_exists(release:_release, rpm:exists_check))) {
    if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
  }
}

if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "protobuf / protobuf-compiler / protobuf-compiler-debuginfo / etc");
}
VendorProductVersionCPE
amazonlinuxprotobufp-cpe:/a:amazon:linux:protobuf
amazonlinuxprotobuf-compilerp-cpe:/a:amazon:linux:protobuf-compiler
amazonlinuxprotobuf-compiler-debuginfop-cpe:/a:amazon:linux:protobuf-compiler-debuginfo
amazonlinuxprotobuf-debuginfop-cpe:/a:amazon:linux:protobuf-debuginfo
amazonlinuxprotobuf-debugsourcep-cpe:/a:amazon:linux:protobuf-debugsource
amazonlinuxprotobuf-develp-cpe:/a:amazon:linux:protobuf-devel
amazonlinuxprotobuf-emacsp-cpe:/a:amazon:linux:protobuf-emacs
amazonlinuxprotobuf-litep-cpe:/a:amazon:linux:protobuf-lite
amazonlinuxprotobuf-lite-debuginfop-cpe:/a:amazon:linux:protobuf-lite-debuginfo
amazonlinuxprotobuf-lite-develp-cpe:/a:amazon:linux:protobuf-lite-devel
Rows per page:
1-10 of 161

Related

fedora 3
openvas 15
mageia 1
suse 1
nessus 23
veracode 2
ubuntucve 4
cve 4
atlassian 4
debiancve 4
ibm 59
wolfi 1
cbl_mariner 10
github 4
prion 4
redhatcve 1
osv 11
amazon 1
cnvd 1
cgr 1
redos 1
rubygems 1
ubuntu 2
redhat 4
gentoo 1
debian 1
freebsd 1
oracle 5
fedora
fedora
[SECURITY] Fedora 37 Update: protobuf-3.19.6-1.fc37
2022-12-18 01:43:08
[SECURITY] Fedora 36 Update: perl-Alien-ProtoBuf-0.09-17.fc36
2023-04-27 01:30:33
[SECURITY] Fedora 36 Update: protobuf-3.19.6-1.fc36
2023-04-27 01:30:33
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0092)
2023-03-28 00:00:00
Fedora: Security Advisory for protobuf (FEDORA-2022-15729fa33d)
2023-04-28 00:00:00
Fedora: Security Advisory for protobuf (FEDORA-2022-25f35ed634)
2022-12-18 00:00:00
mageia
mageia
Updated protobuf packages fix security vulnerability
2023-03-19 01:16:28
suse
suse
Security update for protobuf (important)
2022-11-09 00:00:00
nessus
nessus
SUSE SLED15 / SLES15 Security Update : protobuf (SUSE-SU-2022:3922-1)
2022-11-10 00:00:00
Amazon Linux 2 : protobuf (ALAS-2023-1973)
2023-03-07 00:00:00
EulerOS 2.0 SP10 : protobuf (EulerOS-SA-2023-1537)
2023-03-19 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-10-21 09:13:39
Denial Of Service (DoS)
2022-10-06 04:00:47
ubuntucve
ubuntucve
CVE-2022-1941
2022-09-22 00:00:00
CVE-2022-3171
2022-10-12 00:00:00
CVE-2022-3509
2022-12-12 00:00:00
cve
cve
CVE-2022-3171
2022-10-12 23:15:00
CVE-2022-1941
2022-09-22 15:15:00
CVE-2022-3510
2022-12-12 13:15:00
atlassian
atlassian
DoS (Denial of Service) com.google.protobuf:protobuf-java Dependency in Jira Software Data Center and Server
2024-02-14 10:46:09
com.google.protobuf:protobuf-java Vulnerability in Jira Service Management Data Center and Server
2023-10-09 01:44:45
com.google.protobuf:protobuf-java Vulnerability in Jira Service Management Data Center and Server
2023-10-09 01:44:49
debiancve
debiancve
CVE-2022-1941
2022-09-22 15:15:00
CVE-2022-3171
2022-10-12 23:15:00
CVE-2022-3509
2022-12-12 13:15:00
ibm
ibm
Security Bulletin: IBM App Connect Enterprise Certified Container IntegrationServer and IntegrationRuntime operands that use DFDL may be vulnerable to denial of service due to [CVE-2022-3171]
2023-04-28 11:54:52
Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Google Protocol Buffers
2023-01-30 16:58:34
Security Bulletin: Automation Assets in IBM Cloud Pak for Integration is vulnerable to denial of service due to protobuf CVE-2022-1941
2023-01-31 10:28:27
wolfi
wolfi
CVE-2022-3171 vulnerabilities
2024-04-25 09:06:43
cbl_mariner
cbl_mariner
CVE-2022-1941 affecting package mysql 8.0.32-1
2024-04-25 09:08:10
CVE-2022-1941 affecting package mozjs60 60.9.0-13
2024-04-25 09:08:10
CVE-2022-1941 affecting package tensorflow 2.11.1-1
2024-04-17 22:02:46
github
github
protobuf-cpp and protobuf-python have potential Denial of Service issue
2022-09-23 20:31:15
protobuf-java has a potential Denial of Service issue
2022-10-04 22:17:15
Protobuf Java vulnerable to Uncontrolled Resource Consumption
2022-12-12 15:30:33
prion
prion
Design/Logic Flaw
2022-09-22 15:15:00
Design/Logic Flaw
2022-10-12 23:15:00
Code injection
2022-12-12 13:15:00
redhatcve
redhatcve
CVE-2022-3171
2022-10-26 14:23:07
osv
osv
protobuf-java has a potential Denial of Service issue
2022-10-04 22:17:15
protobuf-cpp and protobuf-python have potential Denial of Service issue
2022-09-23 20:31:15
CVE-2022-1941
2022-09-22 15:15:09
amazon
amazon
Medium: protobuf
2023-03-02 22:35:00
cnvd
cnvd
Google protobuf-java denial of service vulnerability
2022-10-14 00:00:00
cgr
cgr
CVE-2022-3171 vulnerabilities
2024-04-25 09:06:10
redos
redos
ROS-20221020-02
2022-10-20 00:00:00
rubygems
rubygems
protobuf-java has a potential Denial of Service issue
2022-10-03 21:00:00
ubuntu
ubuntu
protobuf vulnerabilities
2022-12-08 00:00:00
Protocol Buffers vulnerabilities
2023-03-13 00:00:00
redhat
redhat
(RHSA-2022:7896) Moderate: Red Hat Integration Debezium 1.9.7 security update
2022-11-09 13:46:18
(RHSA-2022:9023) Important: Red Hat build of Quarkus 2.13.5 release and security update
2022-12-14 13:13:39
(RHSA-2023:1006) Important: Red Hat build of Quarkus 2.7.7 release and security update
2023-03-08 14:51:11
gentoo
gentoo
protobuf-java: Denial of Service
2023-01-11 00:00:00
debian
debian
[SECURITY] [DLA 3393-1] protobuf security update
2023-04-18 07:12:21
freebsd
freebsd
MySQL -- Multiple vulnerabilities
2023-01-20 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00
JSON
Related for AL2023_ALAS2023-2023-049.NASL
fedora3openvas15mageia1suse1nessus23veracode2ubuntucve4cve4atlassian4debiancve4ibm59wolfi1cbl_mariner10github4prion4redhatcve1osv11amazon1cnvd1cgr1redos1rubygems1ubuntu2redhat4gentoo1debian1freebsd1oracle5