CVE-2017-8359
- Source
- https://cve.org/CVERecord?id=CVE-2017-8359
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-8359.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-8359
- Aliases
- Downstream
- Published
- 2017-04-30T17:59:00.997Z
- Modified
- 2026-05-18T11:32:30.431123Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Google gRPC before 2017-03-29 has an out-of-bounds write caused by a heap-based use-after-free related to the grpccalldestroy function in core/lib/surface/call.c.
- References
Affected packages
Git
github.com/grpc/grpc
Affected ranges
- Type
- GIT
- Repo
- https://github.com/grpc/grpc
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "extracted_events": [ { "introduced": "0" }, { "last_affected": "1.2.1" } ], "source": "CPE_FIELD", "cpe": "cpe:2.3:a:grpc:grpc:*:*:*:*:*:*:*:*" }
github.com/grpc/grpc-go
Affected ranges
- Type
- GIT
- Repo
- https://github.com/grpc/grpc-go
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "extracted_events": [ { "introduced": "0" }, { "last_affected": "1.2.1" } ], "source": "CPE_FIELD", "cpe": "cpe:2.3:a:grpc:grpc:*:*:*:*:*:*:*:*" }
github.com/grpc/grpc-kotlin
Affected ranges
- Type
- GIT
- Repo
- https://github.com/grpc/grpc-kotlin
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "extracted_events": [ { "introduced": "0" }, { "last_affected": "1.2.1" } ], "source": "CPE_FIELD", "cpe": "cpe:2.3:a:grpc:grpc:*:*:*:*:*:*:*:*" }
github.com/grpc/grpc-node
Affected ranges
- Type
- GIT
- Repo
- https://github.com/grpc/grpc-node
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "extracted_events": [ { "introduced": "0" }, { "last_affected": "1.2.1" } ], "source": "CPE_FIELD", "cpe": "cpe:2.3:a:grpc:grpc:*:*:*:*:*:*:*:*" }
Affected versions
@grpc/grpc-js-xds@1.*
@grpc/grpc-js-xds@1.2.0
@grpc/grpc-js-xds@1.2.1
@grpc/grpc-js@0.*
@grpc/grpc-js@0.2.0
@grpc/grpc-js@0.3.0
@grpc/grpc-js@0.3.1
@grpc/grpc-js@0.3.3
@grpc/grpc-js@0.3.4
@grpc/grpc-js@0.3.6
@grpc/grpc-js@0.4.0
@grpc/grpc-js@0.4.2
@grpc/grpc-js@0.4.3
@grpc/grpc-js@0.5.0
@grpc/grpc-js@0.5.1
@grpc/grpc-js@0.5.2
@grpc/grpc-js@0.5.3
@grpc/grpc-js@0.6.0
@grpc/grpc-js@0.6.1
@grpc/grpc-js@0.6.12
@grpc/grpc-js@0.6.18
@grpc/grpc-js@0.6.2
@grpc/grpc-js@0.6.3
@grpc/grpc-js@0.6.4
@grpc/grpc-js@0.6.5
@grpc/grpc-js@0.7.0
@grpc/grpc-js@0.7.1
@grpc/grpc-js@0.7.2
@grpc/grpc-js@0.7.5
@grpc/grpc-js@0.7.6
@grpc/grpc-js@0.7.9
@grpc/grpc-js@0.8.0
@grpc/grpc-js@0.8.1
@grpc/grpc-js@1.*
@grpc/grpc-js@1.0.0
@grpc/grpc-js@1.0.2
@grpc/grpc-js@1.0.3
@grpc/grpc-js@1.0.4
@grpc/grpc-js@1.0.5
@grpc/grpc-js@1.1.0
@grpc/grpc-js@1.1.2
@grpc/grpc-js@1.1.3
@grpc/grpc-js@1.1.4
@grpc/grpc-js@1.1.6
@grpc/grpc-js@1.2.0
@grpc/grpc-js@1.2.3
@grpc/grpc-js@1.2.4
@grpc/grpc-js@1.2.5
@grpc/proto-loader@0.*
@grpc/proto-loader@0.3.0
@grpc/proto-loader@0.4.0
@grpc/proto-loader@0.5.0
@grpc/proto-loader@0.5.1
@grpc/proto-loader@0.5.2
@grpc/proto-loader@0.5.4
grpc-tools@1.*
grpc-tools@1.7.0
grpc-tools@1.7.2
grpc-tools@1.8.0
grpc-tools@1.9.0
grpc-tools@1.9.1
grpc@1.*
grpc@1.23.4
grpc@1.24.3
github.com/grpc/grpc-web
Affected ranges
- Type
- GIT
- Repo
- https://github.com/grpc/grpc-web
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "extracted_events": [ { "introduced": "0" }, { "last_affected": "1.2.1" } ], "source": "CPE_FIELD", "cpe": "cpe:2.3:a:grpc:grpc:*:*:*:*:*:*:*:*" }