Azure Linux 3.0 Security Update: python-tensorboard / pytorch (CVE-2021-22569)

The version of python-tensorboard / pytorch installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-22569 advisory. - An issue in protobuf-java allowed the interleaving of...

OESA-2022-1694 protobuf security update

Protocol Buffers a.k.a., protobuf are Google's language-neutral, platform-neutral, extensible mechanism for serializing structured data. You can find protobuf's documentation on the Google Developers site. Security Fixes: An issue in protobuf-java allowed the interleaving of...

Code injection

An issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in such a way that would be processed out of order. A small malicious payload can occupy the parser for several minutes by creating large numbers of short-lived objects that cause frequent, repeated...

CVE-2021-22569

An issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in such a way that would be processed out of order. A small malicious payload can occupy the parser for several minutes by creating large numbers of short-lived objects that cause frequent, repeated...

Denial Of Service (DoS)

protobuf is vulnerable to Denial of Service DoS. The library does not properly handle unknown fields in the UnknownFieldSet function in UnknownFieldSet.java, allowing an attacker to crash the application through many short-lived objects by providing malicious payload...