Authors: Created by IBM

There is a vulnerability in the Google protobuf-java library used by IBM WebSphere Application Server Liberty with the grpc-1.0 or grpcClient-1.0 feature enabled.This has been addressed. CVEID:  CVE-2022-3171^[1]
DESCRIPTION:  protobuf-java core and lite are vulnerable to a denial of service, caused by a flaw in the parsing procedure for binary and text format data.By sending non-repeated embedded messages with repeated or unknown fields, a...

Just published by IBM: Read more