Bugzilla – Bug 1195258
VUL-0: CVE-2021-22570: protobuf: Nullptr dereference when a null char is present in a proto symbol
Last modified: 2023-03-24 12:11:54 UTC
CVE-2021-22570 Nullptr dereference when a null char is present in a proto symbol. The symbol is parsed incorrectly, leading to an unchecked call into the proto file's name during generation of the resulting error message. Since the symbol is incorrectly parsed, the file is nullptr. We recommend upgrading to version 3.15.0 or greater. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-22570 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22570 https://github.com/protocolbuffers/protobuf/releases/tag/v3.15.0
There is not a lot of information about the bug, but going through the commit history, it seems that the fix is included in the changes to src/google/protobuf/descriptor.cc in: https://github.com/protocolbuffers/protobuf/commit/af95001202a035d78ff997e737bd67fca22ab32a Based on that, the affected codestreams are: - SUSE:SLE-15:Update - SUSE:SLE-15-SP2:Update - openSUSE:Backports:SLE-12-SP2:Update The fix was included in release 3.15.0, so openSUSE:Factory is not affected.
I only just have one commit according to protobuf changelog, I didn't notice I'm the internal protobuf maintainer... I can submit the latest version that should fix this issue, is it ok for you?
Hi Max, same as bsc#1194530#c4 [0]. [0] https://bugzilla.suse.com/show_bug.cgi?id=1194530#c4
MR#267360 for SUSE:SLE-15-SP2:Update MR#267361 for SUSE:SLE-15:Update
openSUSE-SU-2022:0823-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1195258 CVE References: CVE-2021-22570 JIRA References: Sources used: openSUSE Leap 15.4 (src): protobuf-3.5.0-5.5.1 openSUSE Leap 15.3 (src): protobuf-3.5.0-5.5.1
openSUSE-SU-2022:1040-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1195258 CVE References: CVE-2021-22570 JIRA References: Sources used: openSUSE Leap 15.4 (src): protobuf-3.9.2-4.12.1 openSUSE Leap 15.3 (src): protobuf-3.9.2-4.12.1
SUSE-SU-2022:1040-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1195258 CVE References: CVE-2021-22570 JIRA References: Sources used: SUSE Linux Enterprise Realtime Extension 15-SP2 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for SUSE Manager Server 4.2 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for SUSE Manager Server 4.1 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for Public Cloud 15-SP4 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for Public Cloud 15-SP3 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for Public Cloud 15-SP2 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for Development Tools 15-SP4 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for Development Tools 15-SP3 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for Basesystem 15-SP4 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for Basesystem 15-SP3 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Micro 5.1 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Micro 5.0 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Installer 15-SP2 (src): protobuf-3.9.2-4.12.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2022:1040-2: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1195258 CVE References: CVE-2021-22570 JIRA References: Sources used: SUSE Linux Enterprise Micro 5.2 (src): protobuf-3.9.2-4.12.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2022:1040-3: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 1195258 CVE References: CVE-2021-22570 JIRA References: Sources used: SUSE Manager Server 4.1 (src): protobuf-3.9.2-4.12.1 SUSE Manager Retail Branch Server 4.1 (src): protobuf-3.9.2-4.12.1 SUSE Manager Proxy 4.1 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Server for SAP 15-SP2 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Server 15-SP2-LTSS (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Server 15-SP2-BCL (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise Module for SUSE Manager Server 4.3 (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (src): protobuf-3.9.2-4.12.1 SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (src): protobuf-3.9.2-4.12.1 SUSE Enterprise Storage 7 (src): protobuf-3.9.2-4.12.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Done, closing.