CVE-2022-1941 Out of Memory issue in ProtocolBuffers for cpp and python

2022-09-2200:00:00

CWE-1286

Google

github.com

protocolbuffers

cpp

python

parsing vulnerability

denial of service

out of memory

unsanitized input

upgrading

cve-2022-1941

AI Score

6.7

Confidence

Low

SSVC

Exploitation

none

Automatable

yes

Technical Impact

partial

JSON

A parsing vulnerability for the MessageSet type in the ProtocolBuffers versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 3.21.5 for protobuf-cpp, and versions prior to and including 3.16.1, 3.17.3, 3.18.2, 3.19.4, 3.20.1 and 4.21.5 for protobuf-python can lead to out of memory failures. A specially crafted message with multiple key-value per elements creates parsing issues, and can lead to a Denial of Service against services receiving unsanitized input. We recommend upgrading to versions 3.18.3, 3.19.5, 3.20.2, 3.21.6 for protobuf-cpp and 3.18.3, 3.19.5, 3.20.2, 4.21.6 for protobuf-python. Versions for 3.16 and 3.17 are no longer updated.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:google:protobuf-cpp:*:*:*:*:*:*:*:*"
    ],
    "vendor": "google",
    "product": "protobuf-cpp",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "3.18.3",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "3.19.0",
        "lessThan": "3.19.5",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "3.20.0",
        "lessThan": "3.20.2",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "3.21.0",
        "lessThan": "3.21.6",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:a:google:protobuf-python:*:*:*:*:*:*:*:*"
    ],
    "vendor": "google",
    "product": "protobuf-python",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "3.18.3",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "3.19.0",
        "lessThan": "3.19.5",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "3.20.0",
        "lessThan": "3.20.2",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "4.0.0",
        "lessThan": "4.21.6",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]