Lucene search
K

9 matches found

OSV
OSV
added 2026/03/02 12:9 p.m.10 views

CLSA-2026-1772453362 protobuf: Fix of CVE-2026-0994

CVE-2026-0994: recursion depth bypass in jsonformat.ParseDict...

8.2CVSS7.1AI score0.00613EPSS
Exploits0References1
Rockylinux
Rockylinux
added 2026/02/24 6:56 p.m.13 views

protobuf security update

An update is available for protobuf. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The protobuf packages provide Protocol Buffers, Google's data interchange...

8.2CVSS5.7AI score0.00613EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/02/24 5:36 p.m.6 views

CVE-2026-0994 affecting package pytorch for versions less than 2.0.0-14

CVE-2026-0994 affecting package pytorch for versions less than 2.0.0-14. A patched version of the package is available...

8.2CVSS5.4AI score0.00613EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2026/02/24 3:36 p.m.4 views

Security update for protobuf

This update for protobuf fixes the following issues:i CVE-2026-0994: Fixed google.protobuf.Any recursion depth bypass in Python jsonformat.ParseDict bsc1257173. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.2CVSS5.4AI score0.00613EPSS
Exploits0References4
CBLMariner
CBLMariner
added 2026/02/13 6:52 a.m.19 views

CVE-2026-0994 affecting package mysql for versions less than 8.0.45-2

CVE-2026-0994 affecting package mysql for versions less than 8.0.45-2. A patched version of the package is available...

8.2CVSS5.5AI score0.00613EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/05 12:0 a.m.7 views

SUSE SLED15: libprotobuf-lite25_1_0 / libprotobuf-lite25_1_0-32bit / etc (SUSE-SU-2026:0374-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0374-1 advisory. - CVE-2026-0994: Fixed google.protobuf.Any recursion depth bypass in Python jsonformat.ParseDict...

8.2CVSS6.3AI score0.00613EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/26 4:50 p.m.6 views

CVE-2026-0994

A flaw was found in protobuf. A remote attacker can exploit this denial-of-service DoS vulnerability by supplying deeply nested google.protobuf.Any messages to the google.protobuf.jsonformat.ParseDict function. This bypasses the intended recursion depth limit, leading to the exhaustion of Python’...

8.2CVSS5.8AI score0.00613EPSS
Exploits0References4
Circl
Circl
added 2026/01/24 9:22 p.m.3 views

CVE-2026-0994

creationtimestamp| type| source ---|---|--- 2026-01-24 21:22:23+00:00| seen| https://gist.github.com/alon710/5baa2e680f8acff42001de482f43ce99 2026-01-24 22:16:11+00:00| seen| https://gist.github.com/alon710/66c5ee0ebadec10c9308f424b9b41e6c 2026-01-24 22:16:14+00:00| seen|...

8.2CVSS5AI score0.00613EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/01/23 2:55 p.m.7 views

CVE-2026-0994

A denial-of-service DoS vulnerability exists in google.protobuf.jsonformat.ParseDict in Python, where the maxrecursiondepth limit can be bypassed when parsing nested google.protobuf.Any messages. Due to missing recursion depth accounting inside the internal Any-handling logic, an attacker can...

8.2CVSS5.6AI score0.00613EPSS
Exploits0
Rows per page
Query Builder