Product Research Enterprise Plans Docs

PyPi: Nanopb

PVE-2023-59285

Safety vulnerability ID: 59285

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Jul 03, 2023 Updated at Dec 02, 2024

Advisory

Nanopb 0.4.2, 0.3.9.6 and 0.2.9.5 include a security fix: Buffer overflow when bytes.size…

[This advisory has been limited. Please create a free account to view the full advisory.]

Affected package

nanopb

Latest version: 0.4.9.1

Nanopb is a small code-size Protocol Buffers implementation in ansi C. It is especially suitable for use in microcontrollers, but fits any memory restricted system.

Affected versions

Fixed versions

Vulnerability changelog

Fix buffer overflow when encoding bytes with size set to 65535 (547, GHSA-3p39-mfxg-hrq4)…

[This text has been limited. Please create a free account to view the full text.]

Resources

https://pypi.org/project/nanopb
https://pyup.io/changelogs/nanopb/