CVE-2024-24786
Published: 5 March 2024
The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
golang-google-protobuf Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needs triage
|
|
| mantic |
Needs triage
|
|
| noble |
Needs triage
|
|
| upstream |
Needs triage
|
|
|
google-guest-agent Launchpad, Ubuntu, Debian |
bionic |
Needs triage
|
| focal |
Needs triage
|
|
| jammy |
Released
(20231004.02-0ubuntu1~22.04.4)
|
|
| mantic |
Released
(20231004.02-0ubuntu1~23.10.3)
|
|
| noble |
Needs triage
|
|
| upstream |
Needs triage
|
|
| xenial |
Needs triage
|
|
|
google-osconfig-agent Launchpad, Ubuntu, Debian |
bionic |
Needs triage
|
| focal |
Needs triage
|
|
| jammy |
Released
(20230504.00-0ubuntu1~22.04.1)
|
|
| mantic |
Released
(20230504.00-0ubuntu2.2)
|
|
| noble |
Needs triage
|
|
| upstream |
Needs triage
|
|
| xenial |
Needs triage
|