Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.
No PoCs from references.
- https://github.com/11notes/docker-ente
- https://github.com/11notes/docker-github-runner
- https://github.com/8-cm/kube-dump
- https://github.com/DanielePeruzzi97/rancher-k3s-docker
- https://github.com/NaInSec/CVE-LIST
- https://github.com/fkie-cad/nvd-json-data-feeds
- https://github.com/h4ckm1n-dev/report-test
- https://github.com/kaisensan/desafio-girus-pick
- https://github.com/nics-tw/sbom2vans
- https://github.com/ofirc/ingress-nightmare
- https://github.com/openshift-sustaining/ocp-cve-remediator
- https://github.com/ytono/gcp-arcade