This update for protobuf fixes the following issues:
CVE-2021-22570: Fix incorrect parsing of nullchar in the proto symbol (bsc#1195258).
Affected Packages
libprotobuf-lite20
SUSE Linux Enterprise Installer Updates 15 SP2SUSE Linux Enterprise Micro 5.0SUSE Linux Enterprise Micro 5.1SUSE Linux Enterprise Module for Basesystem 15 SP3SUSE Linux Enterprise Module for Development Tools 15 SP3
Fixed in:
3.9.2-4.12.1
protobuf
SUSE Linux Enterprise Installer Updates 15 SP2SUSE Linux Enterprise Micro 5.0SUSE Linux Enterprise Micro 5.1SUSE Linux Enterprise Module for Basesystem 15 SP3SUSE Linux Enterprise Module for Development Tools 15 SP3
Fixed in:
3.9.2-4.12.1
libprotobuf20
SUSE Linux Enterprise Module for Basesystem 15 SP3SUSE Linux Enterprise Real Time 15 SP2
Fixed in:
3.9.2-4.12.1
libprotoc20
SUSE Linux Enterprise Module for Development Tools 15 SP3SUSE Linux Enterprise Real Time 15 SP2
Fixed in:
3.9.2-4.12.1
protobuf-devel
SUSE Linux Enterprise Module for Development Tools 15 SP3SUSE Linux Enterprise Real Time 15 SP2
Fixed in:
3.9.2-4.12.1
python2-protobuf
SUSE Linux Enterprise Module for Package Hub 15 SP3SUSE Linux Enterprise Module for Package Hub 15 SP4
Fixed in:
3.9.2-4.12.1
python3-protobuf
SUSE Linux Enterprise Module for Package Hub 15 SP3SUSE Linux Enterprise Module for Package Hub 15 SP4SUSE Linux Enterprise Module for Public Cloud 15 SP2SUSE Linux Enterprise Module for Public Cloud 15 SP3
Fixed in:
3.9.2-4.12.1
protobuf-java
SUSE Manager Server Module 4.1SUSE Manager Server Module 4.2