Unrated severityNVD Advisory· Published Apr 13, 2023· Updated Feb 13, 2025
CVE-2022-48468
CVE-2022-48468
Description
protobuf-c before 1.4.1 has an unsigned integer overflow in parse_required_member.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
23- protobuf-c/protobuf-cdescription
- Range: <1.4.1
- osv-coords21 versionspkg:rpm/almalinux/protobuf-cpkg:rpm/almalinux/protobuf-c-compilerpkg:rpm/almalinux/protobuf-c-develpkg:rpm/opensuse/libsignal-protocol-c&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/protobuf-c&distro=openSUSE%20Leap%2015.4pkg:rpm/suse/protobuf-c&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/protobuf-c&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3pkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/protobuf-c&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/protobuf-c&distro=SUSE%20Manager%20Proxy%204.2pkg:rpm/suse/protobuf-c&distro=SUSE%20Manager%20Server%204.2
< 1.3.3-13.el9+ 20 more
- (no CPE)range: < 1.3.3-13.el9
- (no CPE)range: < 1.3.3-13.el9
- (no CPE)range: < 1.3.3-13.el9
- (no CPE)range: < 2.3.3-2.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.0-150000.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.0-150000.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.0-150000.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
- (no CPE)range: < 1.3.2-150200.3.3.1
Patches
Vulnerability mechanics
References
7- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EI4JZSHJXW7WOOTAQSV5SUCC5GE2GC2B/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UGLZZYPOLI733DPETL444E3GY5KSS6LG/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VNUEZZEPR2F6M67ANXLOPJX6AQL3TK4P/mitrevendor-advisory
- github.com/protobuf-c/protobuf-c/commit/ec3d900001a13ccdaa8aef996b34c61159c76217mitre
- github.com/protobuf-c/protobuf-c/issues/499mitre
- github.com/protobuf-c/protobuf-c/pull/513mitre
- github.com/protobuf-c/protobuf-c/releases/tag/v1.4.1mitre
News mentions
0No linked articles in our index yet.