Impact
In certain situations, a malicious JSON input could cause the C++ JSON parser to copy data that has already been freed into an error message. This can only happen if the code is parsing from a stream with separate chunks rather than a contiguous array. The bug was introduced in 4.22.0 and was fixed with b955165 in 4.25.0.
Patches
Users should upgrade to at least protobuf C++ 4.25.0 (tag v25.0).
Impact
In certain situations, a malicious JSON input could cause the C++ JSON parser to copy data that has already been freed into an error message. This can only happen if the code is parsing from a stream with separate chunks rather than a contiguous array. The bug was introduced in 4.22.0 and was fixed with b955165 in 4.25.0.
Patches
Users should upgrade to at least protobuf C++ 4.25.0 (tag
v25.0).