SUSE-SU-2024:3747-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2024:3747-1

HIGH7.5

Security update for protobuf

Published Oct 22, 2024

Modified 1 years ago

Fix available

Details

Description of the patch:

This update for protobuf fixes the following issues:

CVE-2024-7254: Fixed stack overflow vulnerability in Protocol Buffer (bsc#1230778)

Affected Packages

libprotobuf-lite25_1_0

SUSE Linux Enterprise Desktop 15 SP5SUSE Linux Enterprise High Performance Computing 15 SP5SUSE Linux Enterprise Installer Updates 15 SP5SUSE Linux Enterprise Micro 5.5SUSE Linux Enterprise Module for Basesystem 15 SP5

Fixed in:

25.1-150500.12.5.1

libprotobuf25_1_0

SUSE Linux Enterprise Module for Basesystem 15 SP5openSUSE Leap 15.5

Fixed in:

25.1-150500.12.5.1

libprotoc25_1_0

SUSE Linux Enterprise Module for Basesystem 15 SP5SUSE Linux Enterprise Module for Development Tools 15 SP5SUSE Linux Enterprise Module for Public Cloud 15 SP5openSUSE Leap 15.5

Fixed in:

25.1-150500.12.5.1

protobuf-devel

SUSE Linux Enterprise Module for Development Tools 15 SP5openSUSE Leap 15.5

Fixed in:

25.1-150500.12.5.1

python311-protobuf

SUSE Linux Enterprise Module for Python 3 15 SP5openSUSE Leap 15.5

Fixed in:

4.25.1-150500.12.5.1

libprotobuf-lite25_1_0-32bit

openSUSE Leap 15.5