Lucene search
RedHatRHSA-2022:7970HistoryNov 15, 2022 - 6:12 a.m.
(RHSA-2022:7970) Moderate: protobuf security update
2022-11-1506:12:20
access.redhat.com
12
protobuf
google
protocol buffers
cve-2021-22570
rhel 9.1
0.0004 Low
EPSS
Percentile
16.1%
The protobuf packages provide Protocol Buffers, Google’s data interchange format. Protocol Buffers can encode structured data in an efficient yet extensible format, and provide a flexible, efficient, and automated mechanism for serializing structured data.
Security Fix(es):
- protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference (CVE-2021-22570)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.1 Release Notes linked from the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 9 | aarch64 | protobuf-debugsource | < 3.14.0-13.el9 | protobuf-debugsource-3.14.0-13.el9.aarch64.rpm |
| RedHat | 9 | ppc64le | protobuf-compiler-debuginfo | < 3.14.0-13.el9 | protobuf-compiler-debuginfo-3.14.0-13.el9.ppc64le.rpm |
| RedHat | 9 | i686 | protobuf | < 3.14.0-13.el9 | protobuf-3.14.0-13.el9.i686.rpm |
| RedHat | 9 | x86_64 | protobuf-debuginfo | < 3.14.0-13.el9 | protobuf-debuginfo-3.14.0-13.el9.x86_64.rpm |
| RedHat | 9 | ppc64le | protobuf-lite-devel | < 3.14.0-13.el9 | protobuf-lite-devel-3.14.0-13.el9.ppc64le.rpm |
| RedHat | 9 | i686 | protobuf-lite | < 3.14.0-13.el9 | protobuf-lite-3.14.0-13.el9.i686.rpm |
| RedHat | 9 | ppc64le | protobuf-lite | < 3.14.0-13.el9 | protobuf-lite-3.14.0-13.el9.ppc64le.rpm |
| RedHat | 9 | x86_64 | protobuf-compiler-debuginfo | < 3.14.0-13.el9 | protobuf-compiler-debuginfo-3.14.0-13.el9.x86_64.rpm |
| RedHat | 9 | x86_64 | protobuf-lite-debuginfo | < 3.14.0-13.el9 | protobuf-lite-debuginfo-3.14.0-13.el9.x86_64.rpm |
| RedHat | 9 | aarch64 | protobuf-devel | < 3.14.0-13.el9 | protobuf-devel-3.14.0-13.el9.aarch64.rpm |
Related
nessus
nessus
EulerOS 2.0 SP9 : protobuf (EulerOS-SA-2022-1851)
2022-06-15 00:00:00
Amazon Linux 2022 : (ALAS2022-2022-098)
2022-09-06 00:00:00
osv
osv
protobuf vulnerability
2022-06-21 20:47:39
CVE-2021-22570
2022-01-26 14:15:08
PYSEC-2022-48
2022-01-26 14:15:00
openvas
openvas
Huawei EulerOS: Security Advisory for protobuf (EulerOS-SA-2022-1797)
2022-06-07 00:00:00
Huawei EulerOS: Security Advisory for protobuf (EulerOS-SA-2022-2279)
2022-08-18 00:00:00
Huawei EulerOS: Security Advisory for protobuf (EulerOS-SA-2022-2188)
2022-08-01 00:00:00
alpinelinux
alpinelinux
CVE-2021-22570
2022-01-26 14:15:00
suse
suse
Security update for protobuf (moderate)
2022-03-14 00:00:00
Security update for protobuf (moderate)
2022-03-30 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-11-19 00:46:21
redhat
redhat
(RHSA-2022:7464) Moderate: protobuf security update
2022-11-08 06:20:13
(RHSA-2022:8860) Moderate: Red Hat OpenStack Platform 16.1.9 (protobuf) security update
2022-12-07 20:09:51
(RHSA-2024:3433) Moderate: protobuf security update
2024-05-28 13:22:24
github
github
NULL Pointer Dereference in Protocol Buffers
2022-01-27 00:01:15
fedora
fedora
[SECURITY] Fedora 35 Update: mingw-protobuf-3.14.0-4.fc35
2022-03-09 19:44:14
[SECURITY] Fedora 35 Update: protobuf-3.14.0-7.fc35
2022-02-16 01:28:54
[SECURITY] Fedora 34 Update: mingw-protobuf-3.14.0-4.fc34
2022-03-09 19:16:34
amazon
amazon
Medium: protobuf
2023-02-03 19:19:00
Medium: protobuf
2023-01-31 20:44:00
Medium: protobuf
2023-02-17 00:11:00
cvelist
cvelist
CVE-2021-22570 Nullptr Dereference in Protobuf
2022-01-26 00:00:00
cgr
cgr
CVE-2021-22570 vulnerabilities
2024-05-19 03:07:16
cve
cve
CVE-2021-22570
2022-01-26 14:15:08
oraclelinux
oraclelinux
protobuf security update
2022-11-15 00:00:00
protobuf security update
2022-11-22 00:00:00
redhatcve
redhatcve
CVE-2021-22570
2022-02-02 10:05:39
rocky
rocky
protobuf security update
2022-11-08 06:20:13
protobuf security update
2022-11-15 06:12:20
ubuntucve
ubuntucve
CVE-2021-22570
2022-01-26 00:00:00
almalinux
almalinux
Moderate: protobuf security update
2022-11-08 00:00:00
Moderate: protobuf security update
2022-11-15 00:00:00
prion
prion
Design/Logic Flaw
2022-01-26 14:15:00
cbl_mariner
cbl_mariner
CVE-2021-22570 affecting package mysql for versions less than 8.0.29-1
2022-07-01 21:02:51
CVE-2021-22570 affecting package protobuf 3.14.0-1
2024-06-29 09:08:29
ubuntu
ubuntu
Protocol Buffers vulnerability
2022-06-21 00:00:00
Protocol Buffers vulnerabilities
2023-03-13 00:00:00
debiancve
debiancve
CVE-2021-22570
2022-01-26 14:15:08
nvd
nvd
CVE-2021-22570
2022-01-26 14:15:08
ibm
ibm
wolfi
wolfi
CVE-2021-22570 vulnerabilities
2024-06-29 09:08:33
photon
photon
Critical Photon OS Security Update - PHSA-2022-0170
2022-04-07 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0170
2022-04-07 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0415
2022-07-07 00:00:00
debian
debian
[SECURITY] [DLA 3393-1] protobuf security update
2023-04-18 07:12:21
altlinux
altlinux
Security fix for the ALT Linux 10 package MySQL version 8.0.29-alt1
2022-07-05 00:00:00
freebsd
freebsd
MySQL -- Multiple vulnerabilities
2022-04-16 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00