/
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-58103

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-58103

CGA ID

CGA-435c-543w-xw5q

Severity

Unknown

Description

Square Wire before 5.2.0 does not enforce a recursion limit on nested groups in ByteArrayProtoReader32.kt and ProtoReader.kt.

References

  • https://images.chainguard.dev/security/CGA-435c-543w-xw5q
  • https://github.com/advisories/GHSA-pwf9-q62p-v7wc
  • https://github.com/square/wire/commit/b90e60c09befaff836a2fc2ee4d678451b2ec75d
  • https://github.com/square/wire/compare/5.1.0...5.2.0

Affected packages

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsPricingContact UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogEventsTrust CenterDocumentation