Nullptr dereference when a null char is present in a proto symbol. The symbol is parsed incorrectly, leading to an unchecked call into the proto files name during generation of the resulting error message. Since the symbol is incorrectly parsed, the file is nullptr. We recommend upgrading to version 3.15.0 or greater.
Weakness
The product dereferences a pointer that it expects to be valid but is NULL.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Protobuf | * | 3.15.0 (excluding) | |
| Red Hat Enterprise Linux 8 | RedHat | protobuf-0:3.5.0-15.el8 | * |
| Red Hat Enterprise Linux 8.6 Extended Update Support | RedHat | protobuf-0:3.5.0-15.el8_6 | * |
| Red Hat Enterprise Linux 9 | RedHat | protobuf-0:3.14.0-13.el9 | * |
| Red Hat OpenStack Platform 16.1 | RedHat | protobuf-0:3.6.1-6.el8ost | * |
| Red Hat OpenStack Platform 16.2 | RedHat | protobuf-0:3.6.1-6.el8ost | * |
| Protobuf | Ubuntu | bionic | * |
| Protobuf | Ubuntu | esm-infra-legacy/trusty | * |
| Protobuf | Ubuntu | esm-infra/bionic | * |
| Protobuf | Ubuntu | esm-infra/focal | * |
| Protobuf | Ubuntu | esm-infra/xenial | * |
| Protobuf | Ubuntu | focal | * |
| Protobuf | Ubuntu | impish | * |
| Protobuf | Ubuntu | jammy | * |
| Protobuf | Ubuntu | kinetic | * |
| Protobuf | Ubuntu | trusty | * |
| Protobuf | Ubuntu | trusty/esm | * |
| Protobuf | Ubuntu | upstream | * |
| Protobuf | Ubuntu | xenial | * |
Potential Mitigations
References
- https://github.com/protocolbuffers/protobuf/releases/tag/v3.15.0
- https://lists.debian.org/debian-lts-announce/2023/04/msg00019.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DVUZPALAQ34TQP6KFNLM4IZS6B32XSA/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5PAGL5M2KGYPN3VEQCRJJE6NA7D5YG5X/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BTRGBRC5KGCA4SK5MUNLPYJRAGXMBIYY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFX6KPNOFHYD6L4XES5PCM3QNSKZBOTQ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQJB6ZPRLKV6WCMX2PRRRQBFAOXFBK6B/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MRWRAXAFR3JR7XCFWTHC2KALSZKWACCE/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTWVQRB5OCCTMKEQFY5MYED3DXDVSLP/
- https://security.netapp.com/advisory/ntap-20220429-0005/
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://github.com/protocolbuffers/protobuf/releases/tag/v3.15.0
- https://lists.debian.org/debian-lts-announce/2023/04/msg00019.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DVUZPALAQ34TQP6KFNLM4IZS6B32XSA/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5PAGL5M2KGYPN3VEQCRJJE6NA7D5YG5X/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BTRGBRC5KGCA4SK5MUNLPYJRAGXMBIYY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFX6KPNOFHYD6L4XES5PCM3QNSKZBOTQ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KQJB6ZPRLKV6WCMX2PRRRQBFAOXFBK6B/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MRWRAXAFR3JR7XCFWTHC2KALSZKWACCE/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTWVQRB5OCCTMKEQFY5MYED3DXDVSLP/
- https://security.netapp.com/advisory/ntap-20220429-0005/
- https://www.oracle.com/security-alerts/cpuapr2022.html