Patched versions of the affected gRPC libraries have been released to address CVE-2023-4785 <https://www.cve.org/CVERecord?id=CVE-2023-4785>. *Please deploy patched libraries if all of the following apply to you:*
* You are using gRPC C++, Python, or Ruby. * You are running a gRPC Server in one of those languages. * You are using an unpatched version of the gRPC library. The following set of releases contain the fix: * 1.57.0 and later: https://github.com/grpc/grpc/releases/tag/v1.57.0 * 1.56.2: https://github.com/grpc/grpc/releases/tag/v1.56.2 * 1.55.3: https://github.com/grpc/grpc/releases/tag/v1.55.3 * 1.54.3: https://github.com/grpc/grpc/releases/tag/v1.54.3 * 1.53.2: https://github.com/grpc/grpc/releases/tag/v1.53.2 Best regards, -aj -- AJ Heller Software Engineer h...@google.com -- You received this message because you are subscribed to the Google Groups "grpc.io" group. To unsubscribe from this group and stop receiving emails from it, send an email to grpc-io+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/grpc-io/CA%2B8UZUvVXRxsmFEKpZ1z2Qisy2wLUGzGGLjHFSGgnhE2ustu1w%40mail.gmail.com.
