CVE-2021-22570
Description
Nullptr dereference when a null char is present in a proto symbol. The symbol is parsed incorrectly, leading to an unchecked call into the proto files name during generation of the resulting error message. Since the symbol is incorrectly parsed, the file is nullptr. We recommend upgrading to version 3.15.0 or greater.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.15
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities are affected in Mysql 8.0.28 | Windows |
| Vulnerabilities CVE-2021-22570 are fixed in Nuget-Google.Protobuf 3.15.0 | Windows |
| Vulnerabilities CVE-2021-22570 are fixed in Google-protobuf-java 3.15.0 | Windows |
| Multiple Vulnerabilities are affected in Netapp Active Iq Unified Manager 2.3 | Windows |
| Multiple Vulnerabilities are affected in Netapp Oncommand Insight 2.3 | Windows |
| Multiple Vulnerabilities are affected in Netapp Snapcenter 2.3 | Windows |
| Multiple Vulnerabilities are affected in Netapp Oncommand Workflow Automation 2.3 | Windows |
| Vulnerabilities CVE-2021-22570 are fixed in Python-protobuf 3.15.0 | Windows |
| (RHSA-2022:7970) protobuf security update protobuf-3.14.0-13.el9.i686.rpm | Linux |
| (RHSA-2022:7970) protobuf security update protobuf-3.14.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7970) protobuf security update protobuf-debugsource-3.14.0-13.el9.i686.rpm | Linux |
| (RHSA-2022:7970) protobuf security update protobuf-debugsource-3.14.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7970) protobuf security update protobuf-lite-3.14.0-13.el9.i686.rpm | Linux |
| (RHSA-2022:7970) protobuf security update protobuf-lite-3.14.0-13.el9.x86_64.rpm | Linux |
| (RHSA-2022:7970) protobuf security update python3-protobuf-3.14.0-13.el9.noarch.rpm | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotoc10_3.0.0-9.1ubuntu1.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotoc10_3.0.0-9.1ubuntu1.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotoc17_3.6.1.3-2ubuntu5.2_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotoc17_3.6.1.3-2ubuntu5.2_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotoc23_3.12.4-1ubuntu7.22.04.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotoc23_3.12.4-1ubuntu7.22.04.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotoc23_3.12.4-1ubuntu7.22.10.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotoc23_3.12.4-1ubuntu7.22.10.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf10_3.0.0-9.1ubuntu1.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf10_3.0.0-9.1ubuntu1.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf23_3.12.4-1ubuntu7.22.04.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf23_3.12.4-1ubuntu7.22.04.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf23_3.12.4-1ubuntu7.22.10.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf23_3.12.4-1ubuntu7.22.10.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotoc-dev_3.6.1.3-2ubuntu5.2_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotoc-dev_3.6.1.3-2ubuntu5.2_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python-protobuf_3.0.0-9.1ubuntu1.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python-protobuf_3.0.0-9.1ubuntu1.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python-protobuf_3.6.1.3-2ubuntu5.2_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python-protobuf_3.6.1.3-2ubuntu5.2_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf-java_3.12.4-1ubuntu7.22.04.1_all.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf-java_3.12.4-1ubuntu7.22.10.1_all.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python3-protobuf_3.0.0-9.1ubuntu1.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python3-protobuf_3.0.0-9.1ubuntu1.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python3-protobuf_3.6.1.3-2ubuntu5.2_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python3-protobuf_3.6.1.3-2ubuntu5.2_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python3-protobuf_3.12.4-1ubuntu7.22.04.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python3-protobuf_3.12.4-1ubuntu7.22.04.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python3-protobuf_3.12.4-1ubuntu7.22.10.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) python3-protobuf_3.12.4-1ubuntu7.22.10.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) protobuf-compiler_3.0.0-9.1ubuntu1.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) protobuf-compiler_3.0.0-9.1ubuntu1.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) protobuf-compiler_3.6.1.3-2ubuntu5.2_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) protobuf-compiler_3.6.1.3-2ubuntu5.2_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) protobuf-compiler_3.12.4-1ubuntu7.22.04.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) protobuf-compiler_3.12.4-1ubuntu7.22.04.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) protobuf-compiler_3.12.4-1ubuntu7.22.10.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) protobuf-compiler_3.12.4-1ubuntu7.22.10.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf-lite10_3.0.0-9.1ubuntu1.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf-lite10_3.0.0-9.1ubuntu1.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf-lite17_3.6.1.3-2ubuntu5.2_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf-lite17_3.6.1.3-2ubuntu5.2_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf-lite23_3.12.4-1ubuntu7.22.04.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf-lite23_3.12.4-1ubuntu7.22.04.1_amd64.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf-lite23_3.12.4-1ubuntu7.22.10.1_i386.deb | Linux |
| protocol buffers C++ library (development files) (USN-5945-1) libprotobuf-lite23_3.12.4-1ubuntu7.22.10.1_amd64.deb | Linux |
| protobuf security update (RLSA-2022:7464) protobuf-3.5.0-15.el8.i686.rpm | Linux |
| protobuf security update (RLSA-2022:7464) protobuf-3.5.0-15.el8.x86_64.rpm | Linux |
| protobuf security update (RLSA-2022:7464) protobuf-lite-3.5.0-15.el8.i686.rpm | Linux |
| protobuf security update (RLSA-2022:7464) protobuf-lite-3.5.0-15.el8.x86_64.rpm | Linux |
| protobuf security update (RLSA-2022:7464) python3-protobuf-3.5.0-15.el8.noarch.rpm | Linux |
| protobuf security update (RLSA-2022:7464) protobuf-compiler-3.5.0-15.el8.i686.rpm | Linux |
| protobuf security update (RLSA-2022:7464) protobuf-compiler-3.5.0-15.el8.x86_64.rpm | Linux |
| protobuf security update (RLSA-2022:7970) protobuf-3.14.0-13.el9.i686.rpm | Linux |
| protobuf security update (RLSA-2022:7970) protobuf-3.14.0-13.el9.x86_64.rpm | Linux |
| protobuf security update (RLSA-2022:7970) protobuf-lite-3.14.0-13.el9.i686.rpm | Linux |
| protobuf security update (RLSA-2022:7970) protobuf-lite-3.14.0-13.el9.x86_64.rpm | Linux |
| protobuf security update (RLSA-2022:7970) python3-protobuf-3.14.0-13.el9.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP4 ) python-zope.interface-debuginfo-4.4.2-150000.3.4.1.x86_64.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP4 ) python-zope.interface-debugsource-4.4.2-150000.3.4.1.x86_64.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-aiocontextvars-0.2.2-150100.3.3.3.x86_64.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-websockets-9.1-150100.3.3.3.x86_64.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP4 ) python3-zope.interface-4.4.2-150000.3.4.1.x86_64.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP4 ) python3-zope.interface-debuginfo-4.4.2-150000.3.4.1.x86_64.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) azure-cli-core-2.17.1-150100.6.18.1.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-avro-1.11.0-150100.3.3.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP4 ) python3-constantly-15.1.0-150000.3.4.1.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-cryptography-vectors-3.3.2-150100.3.11.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-Deprecated-1.2.13-150100.3.3.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-humanfriendly-10.0-150100.6.3.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP4 ) python3-hyperlink-17.2.1-150000.3.4.1.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-jsondiff-1.3.0-150100.3.6.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-knack-0.9.0-150100.3.7.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-opencensus-0.8.0-150100.3.3.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-opencensus-context-0.1.2-150100.3.3.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-opencensus-ext-threading-0.1.2-150100.3.3.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-opentelemetry-api-1.5.0-150100.3.3.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP4 ) python3-PyGithub-1.43.5-150100.3.3.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Basesystem Module 15-SP4 ) python3-websocket-client-1.3.2-150100.6.7.3.noarch.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-aiocontextvars-0.2.2-150100.3.3.3.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-websockets-9.1-150100.3.3.3.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) azure-cli-core-2.17.1-150100.6.18.1.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-avro-1.11.0-150100.3.3.3.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-Deprecated-1.2.13-150100.3.3.3.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-humanfriendly-10.0-150100.6.3.3.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-jsondiff-1.3.0-150100.3.6.3.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-knack-0.9.0-150100.3.7.3.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-opencensus-0.8.0-150100.3.3.3.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-opencensus-context-0.1.2-150100.3.3.3.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-opencensus-ext-threading-0.1.2-150100.3.3.3.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-opentelemetry-api-1.5.0-150100.3.3.3.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP3 ) python3-PyGithub-1.43.5-150100.3.3.3.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP5 ) python-zope.interface-debuginfo-4.4.2-150000.3.4.1.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP5 ) python-zope.interface-debugsource-4.4.2-150000.3.4.1.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP5 ) python3-zope.interface-4.4.2-150000.3.4.1.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP5 ) python3-zope.interface-debuginfo-4.4.2-150000.3.4.1.x86_64_15_SP5.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP5 ) azure-cli-core-2.17.1-150100.6.18.1.noarch_15_SP5.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP5 ) python3-constantly-15.1.0-150000.3.4.1.noarch_15_SP5.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP5 ) python3-humanfriendly-10.0-150100.6.3.3.noarch_15_SP5.rpm | Linux |
| SUSE-SU-2023:2783-1(Server Applications Module 15-SP5 ) python3-hyperlink-17.2.1-150000.3.4.1.noarch_15_SP5.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP5 ) python3-jsondiff-1.3.0-150100.3.6.3.noarch_15_SP5.rpm | Linux |
| SUSE-SU-2023:2783-1(Public Cloud Module 15-SP5 ) python3-knack-0.9.0-150100.3.7.3.noarch_15_SP5.rpm | Linux |
| SUSE-SU-2023:2783-1(Basesystem Module 15-SP5 ) python3-websocket-client-1.3.2-150100.6.7.3.noarch_15_SP5.rpm | Linux |
| SUSE-SU-2023:4614-1(SUSE Linux Enterprise Server 12 SP5 ) java-1_8_0-ibm-1.8.0_sr8.15-30.117.1.x86_64.rpm | Linux |
| SUSE-SU-2023:4614-1(SUSE Linux Enterprise Server 12 SP5 ) java-1_8_0-ibm-alsa-1.8.0_sr8.15-30.117.1.x86_64.rpm | Linux |
| SUSE-SU-2023:4614-1(SUSE Linux Enterprise Server 12 SP5 ) java-1_8_0-ibm-devel-1.8.0_sr8.15-30.117.1.x86_64.rpm | Linux |
| SUSE-SU-2023:4614-1(SUSE Linux Enterprise Server 12 SP5 ) java-1_8_0-ibm-plugin-1.8.0_sr8.15-30.117.1.x86_64.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-3.5.0-15.el8.i686.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-3.5.0-15.el8.x86_64.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-compiler-3.5.0-15.el8.i686.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-compiler-3.5.0-15.el8.x86_64.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-compiler-debuginfo-3.5.0-15.el8.i686.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-compiler-debuginfo-3.5.0-15.el8.x86_64.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-debuginfo-3.5.0-15.el8.i686.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-debuginfo-3.5.0-15.el8.x86_64.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-debugsource-3.5.0-15.el8.i686.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-debugsource-3.5.0-15.el8.x86_64.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-lite-3.5.0-15.el8.i686.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-lite-3.5.0-15.el8.x86_64.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-lite-debuginfo-3.5.0-15.el8.i686.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update protobuf-lite-debuginfo-3.5.0-15.el8.x86_64.rpm | Linux |
| (RHSA-2022:7464)Moderate: security update python3-protobuf-3.5.0-15.el8.noarch.rpm | Linux |
| Protobuf update (ELSA-2022-7464) protobuf-3.5.0-15.el8.i686.rpm | Linux |
| Protobuf update (ELSA-2022-7464) protobuf-3.5.0-15.el8.x86_64.rpm | Linux |
| Protobuf-compiler update (ELSA-2022-7464) protobuf-compiler-3.5.0-15.el8.i686.rpm | Linux |
| Protobuf-compiler update (ELSA-2022-7464) protobuf-compiler-3.5.0-15.el8.x86_64.rpm | Linux |
| Protobuf-lite update (ELSA-2022-7464) protobuf-lite-3.5.0-15.el8.i686.rpm | Linux |
| Protobuf-lite update (ELSA-2022-7464) protobuf-lite-3.5.0-15.el8.x86_64.rpm | Linux |
| Python3-protobuf update (ELSA-2022-7464) python3-protobuf-3.5.0-15.el8.noarch.rpm | Linux |
| protobuf Security Update (ALAS-2023-009) python3-protobuf-3.14.0-7.amzn2023.0.3.noarch.rpm | Linux |
| Moderate: protobuf security update protobuf-3.5.0-15.el8.i686.rpm | Linux |
| Moderate: protobuf security update protobuf-3.5.0-15.el8.x86_64.rpm | Linux |
| Moderate: protobuf security update protobuf-compiler-3.5.0-15.el8.i686.rpm | Linux |
| Moderate: protobuf security update protobuf-compiler-3.5.0-15.el8.x86_64.rpm | Linux |
| Moderate: protobuf security update protobuf-lite-3.5.0-15.el8.i686.rpm | Linux |
| Moderate: protobuf security update protobuf-lite-3.5.0-15.el8.x86_64.rpm | Linux |
| Moderate: protobuf security update python3-protobuf-3.5.0-15.el8.noarch.rpm | Linux |
| Moderate: protobuf security update protobuf-3.14.0-13.el9.i686.rpm | Linux |
| Moderate: protobuf security update protobuf-3.14.0-13.el9.x86_64.rpm | Linux |
| Moderate: protobuf security update protobuf-lite-3.14.0-13.el9.i686.rpm | Linux |
| Moderate: protobuf security update protobuf-lite-3.14.0-13.el9.x86_64.rpm | Linux |
| Moderate: protobuf security update python3-protobuf-3.14.0-13.el9.noarch.rpm | Linux |
| Vulnerabilities CVE-2021-22570 are fixed in Nuget-Google.Protobuf for Linux 3.15.0 | Linux |
| Vulnerabilities CVE-2021-22570 are fixed in Google-protobuf-java for Linux 3.15.0 | Linux |
| protobuf Security Update (ALAS2023-2023-009) python3-protobuf-3.14.0-7.amzn2023.0.3.noarch.rpm | Linux |
| Vulnerabilities CVE-2021-22570 are fixed in Python-protobuf for linux 3.15.0 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234