Florencia Puppo created SPARK-30871:
---------------------------------------
Summary: Protobuf vulnerability
Key: SPARK-30871
URL: https://issues.apache.org/jira/browse/SPARK-30871
Project: Spark
Issue Type: Dependency upgrade
Components: Build
Affects Versions: 2.4.5
Reporter: Florencia Puppo
Protobuf version 2.5.0 is vulnerable to Integer Overflow by allowing remote
authenticated attackers to cause a heap-based buffer overflow in serialisation
process.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
