CVE-2014-125106 Information

Description

Nanopb before 0.3.1 allows size_t overflows in pb_dec_bytes and pb_dec_string.

Reference

https://github.com/nanopb/nanopb/commit/d2099cc8f1adb33d427a44a5e32ed27b647c7168 https://github.com/nanopb/nanopb/blob/master/CHANGELOG.txt https://github.com/nanopb/nanopb/compare/nanopb-0.3.0…nanopb-0.3.1