Skip to content

Update protobuf version to version newer than 3.21.7 to fix CVE #76

Open
Open
Update protobuf version to version newer than 3.21.7 to fix CVE#76
@mdavis95

Description

@mdavis95
mdavis95
opened on Apr 29, 2025

GHSA-h4h5-3hr4-j3g2

Protobuf has made an upstream change to Poison Java gencode from vulnerable releases

https://protobuf.dev/news/2025-01-23/

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions