Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 927498 (CVE-2024-24786) - [Tracker] Podman BuildKit infinite loop when unmarshaling certain forms of invalid JSON
Summary: [Tracker] Podman BuildKit infinite loop when unmarshaling certain forms of in...
Status: UNCONFIRMED
Alias: CVE-2024-24786
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL:
Whiteboard:
Keywords: SECURITY, Tracker
Depends on: 927499 927500
Blocks:
  Show dependency tree
 
Reported: 2024-03-22 10:18 UTC by Rahil Bhimjiani
Modified: 2024-03-23 08:01 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Rahil Bhimjiani 2024-03-22 10:18:04 UTC 
Any Golang package with <1.33.0 of google.golang.org/protobuf in go.mod is affected.

https://github.com/advisories/GHSA-8r3f-844c-mc37