2278918 – (CVE-2024-2410) CVE-2024-2410 protobuf: Use-after-free in JsonToBinaryStream()

Bug 2278918 (CVE-2024-2410) - CVE-2024-2410 protobuf: Use-after-free in JsonToBinaryStream()

Summary: CVE-2024-2410 protobuf: Use-after-free in JsonToBinaryStream()

Keywords:
Status:	NEW
Alias:	CVE-2024-2410
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2278920 2278921 2278922 2278923
Blocks:	2278928
TreeView+	depends on / blocked

Reported:	2024-05-03 18:18 UTC by Marco Benatto
Modified:	2025-09-15 08:29 UTC (History)
CC List:	50 users (show)
Fixed In Version:	protobuf 4.25.0
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description Marco Benatto 2024-05-03 18:18:00 UTC

The JsonToBinaryStream() function is part of the protocol buffers C++ implementation and is used to parse JSON from a stream. If the input is broken up into separate chunks in a certain way, the parser will attempt to read bytes from a chunk that has already been freed.

References:
https://github.com/advisories/GHSA-h86c-v8g6-46f2
https://github.com/protocolbuffers/protobuf/releases/tag/v25.0

Comment 1 Marco Benatto 2024-05-03 18:25:52 UTC

Created mingw-protobuf tracking bugs for this issue:

Affects: fedora-all [bug 2278921]


Created protobuf tracking bugs for this issue:

Affects: fedora-all [bug 2278920]

Note You need to log in before you can comment on or make changes to this bug.

aarif
adudiak
agarcial
aoconnor
aprice
asegurap
bdettelb
caswilli
dfreiber
dkuc
drow
eglynn
epacific
fjansen
hkataria
jburrell
jcammara
jhardy
jjoyce
jmitchel
jneedle
jobarker
jschluet
jsherril
jtanner
kaycoth
kholdawa
kshier
lhh
lsvaty
luizcosta
mabashia
mburns
mgarciac
mkleinhe
mpierce
nweather
oezr
omaciel
orabin
pgrist
rbobbitt
sidakwo
simaishi
smcdonal
stcannon
teagle
vkumar
yguenane
zsadeh