Yang-G

**Name of the Vulnerable Software and Affected Versions** Google gRPC versions prior to 2017-03-29 **Description** The issue is caused by a heap-based use-after-free related to the `grpc call destroy` function in core/lib/surface/call.c, resulting in an out-of-bounds write. **Recommendations** For Google gRPC versions prior to 2017-03-29, update to a version released after 2017-03-29 to resolve the issue. As a temporary workaround, consider restricting access to the `grpc call destroy` function until a patch is available.