GHSA-8r3f-844c-mc37

Published

Last updated

https://github.com/advisories/GHSA-8r3f-844c-mc37

Severity

Unknown

Summary

Golang protojson.Unmarshal function infinite loop when unmarshaling certain forms of invalid JSON

Description

The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.

References

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

GHSA-8r3f-844c-mc37

Severity

Summary

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources