Passing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError.
History

Fri, 22 Nov 2024 16:00:00 +0000

Type Values Removed Values Added
First Time appeared Redhat openstack
CPEs cpe:/a:redhat:openstack:17.1::el8
cpe:/a:redhat:openstack:17.1::el9
Vendors & Products Redhat openstack

cve-icon MITRE

Status: PUBLISHED

Assigner: JFROG

Published: 2024-04-30T14:23:03.435Z

Updated: 2024-08-01T20:40:46.508Z

Reserved: 2024-04-30T11:12:30.839Z

Link: CVE-2024-4340

cve-icon Vulnrichment

Updated: 2024-08-01T20:40:46.508Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-04-30T15:15:53.407

Modified: 2024-11-21T09:42:39.480

Link: CVE-2024-4340

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-04-30T00:00:00Z

Links: CVE-2024-4340 - Bugzilla