protobuf-c: Multiple Vulnerabilities — GLSA 202408-33

Multiple vulnerabilities have been discovered in protobuf-c, the worst of which could result in denial of service.

Affected packages

dev-libs/protobuf-c on all architectures
Affected versions < 1.4.1
Unaffected versions >= 1.4.1

Background

protobuf-c is a protocol buffers implementation in C.

Description

Multiple denial of service vulnerabilities have been discovered in protobuf-c.

Impact

Please review the referenced CVE identifiers for details.

Workaround

There is no known workaround at this time.

Resolution

All protobuf-c users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=dev-libs/protobuf-c-1.4.1"
 

References

Release date
August 12, 2024

Latest revision
August 12, 2024: 1

Severity
low

Exploitable
remote

Bugzilla entries