| Bug | buster | bullseye | bookworm | sid | Description |
|---|
| CVE-2022-3510 | vulnerable | vulnerable (no DSA) | fixed | fixed | A parsing issue similar to CVE-2022-3171, but with Message-Type Extens ... |
| CVE-2022-3509 | vulnerable | vulnerable (no DSA) | fixed | fixed | A parsing issue similar to CVE-2022-3171, but with textformat in proto ... |
| CVE-2022-3171 | vulnerable | vulnerable (no DSA) | fixed | fixed | A parsing issue with binary data in protobuf-java core and lite versio ... |
| CVE-2022-1941 | vulnerable | vulnerable (no DSA) | fixed | fixed | A parsing vulnerability for the MessageSet type in the ProtocolBuffers ... |
| CVE-2021-22570 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Nullptr dereference when a null char is present in a proto symbol. The ... |
| CVE-2021-22569 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | An issue in protobuf-java allowed the interleaving of com.google.proto ... |