SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-3722

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-3722

Security update for protobuf

Type: security

Severity: moderate

Issued: 2025-10-22

Description:

This update for protobuf fixes the following issues:

- CVE-2025-4565: parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or
  messages can lead to crash due to a `RecursionError` (bsc#1244663).

References

CVE: CVE-2025-4565
Bugzilla: 1244663 VUL-0: CVE-2025-4565: protobuf: parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages can lead to crash due to RecursionError

Packages

protobuf-3.9.2-150200.4.27.1