4 matches found
OESA-2025-1689 cri-o security update
Open Container Initiative-based implementation of Kubernetes Container Runtime Interface. Security Fixes: The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a...
CVE-2024-24786
The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set...
AZL-35657 CVE-2024-24786 affecting package influxdb for versions less than 2.7.3-7
The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set...
PT-2024-3764
Name of the Vulnerable Software and Affected Versions golang-google-protobuf affected versions not specified Description The issue is related to the protojson.Unmarshal function in the golang-google-protobuf package, which can enter an infinite loop when unmarshaling certain forms of invalid JSON...