{"affected":[{"ecosystem_specific":{"binaries":[{"libprotobuf-lite25_1_0":"25.1-150600.16.13.1","libprotobuf25_1_0":"25.1-150600.16.13.1","libprotoc25_1_0":"25.1-150600.16.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP6","name":"protobuf","purl":"pkg:rpm/suse/protobuf&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"25.1-150600.16.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libprotobuf-lite25_1_0":"25.1-150600.16.13.1","libprotobuf25_1_0":"25.1-150600.16.13.1","libprotoc25_1_0":"25.1-150600.16.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP7","name":"protobuf","purl":"pkg:rpm/suse/protobuf&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"25.1-150600.16.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"protobuf-devel":"25.1-150600.16.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Development Tools 15 SP6","name":"protobuf","purl":"pkg:rpm/suse/protobuf&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"25.1-150600.16.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"protobuf-devel":"25.1-150600.16.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Development Tools 15 SP7","name":"protobuf","purl":"pkg:rpm/suse/protobuf&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"25.1-150600.16.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP6","name":"protobuf","purl":"pkg:rpm/suse/protobuf&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"25.1-150600.16.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python311-protobuf":"4.25.1-150600.16.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 3 15 SP6","name":"protobuf","purl":"pkg:rpm/suse/protobuf&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"25.1-150600.16.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python311-protobuf":"4.25.1-150600.16.13.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 3 15 SP7","name":"protobuf","purl":"pkg:rpm/suse/protobuf&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"25.1-150600.16.13.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libprotobuf-lite25_1_0":"25.1-150600.16.13.1","libprotobuf-lite25_1_0-32bit":"25.1-150600.16.13.1","libprotobuf25_1_0":"25.1-150600.16.13.1","libprotobuf25_1_0-32bit":"25.1-150600.16.13.1","libprotoc25_1_0":"25.1-150600.16.13.1","libprotoc25_1_0-32bit":"25.1-150600.16.13.1","protobuf-devel":"25.1-150600.16.13.1","protobuf-java":"25.1-150600.16.13.1","protobuf-java-bom":"25.1-150600.16.13.1","protobuf-java-parent":"25.1-150600.16.13.1","python311-protobuf":"4.25.1-150600.16.13.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"protobuf","purl":"pkg:rpm/opensuse/protobuf&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"25.1-150600.16.13.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for protobuf fixes the following issues:\n\n- CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError (bsc#1244663).\n","id":"SUSE-SU-2025:02311-1","modified":"2025-07-15T09:15:50Z","published":"2025-07-15T09:15:50Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202502311-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244663"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-4565"}],"related":["CVE-2025-4565"],"summary":"Security update for protobuf","upstream":["CVE-2025-4565"]}