Summary: | <dev-libs/protobuf-{3.19.6,3.20.3} <dev-python/protobuf-python-3.19.6: denial of service via OOM | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | CONFIRMED --- | ||
Severity: | normal | CC: | arfrever.fta, cjk |
Priority: | Normal | Keywords: | PullRequest |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-8gq9-2x98-w8hf | ||
See Also: | https://github.com/gentoo/gentoo/pull/31647 | ||
Whiteboard: | A3 [glsa?] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 905797 | ||
Bug Blocks: |
Description
John Helmert III
2022-09-23 02:50:23 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7ff3e7e2d1447f4377cdeb6824f1563aa79a560e commit 7ff3e7e2d1447f4377cdeb6824f1563aa79a560e Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2023-06-27 19:40:24 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2023-06-27 20:14:35 +0000 dev-libs/protobuf: drop 3.19.3, 3.19.6, 3.20.1-r1, 3.20.3, 21.8 Bug: https://bugs.gentoo.org/905797 Bug: https://bugs.gentoo.org/872434 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> dev-libs/protobuf/Manifest | 5 - ...protobuf-3.16.0-protoc_input_output_files.patch | 240 --------------------- dev-libs/protobuf/protobuf-21.8.ebuild | 148 ------------- dev-libs/protobuf/protobuf-3.19.3.ebuild | 146 ------------- dev-libs/protobuf/protobuf-3.19.6.ebuild | 151 ------------- dev-libs/protobuf/protobuf-3.20.1-r1.ebuild | 143 ------------ dev-libs/protobuf/protobuf-3.20.3.ebuild | 148 ------------- 7 files changed, 981 deletions(-) Cleanup done after maintainer timeout. |