Описание
Duplicate Advisory: sqlparse parsing heavily nested list leads to Denial of Service
Duplicate Advisory
This advisory has been withdrawn because it is a duplicate of GHSA-2m57-hf25-phgg. This link is maintained to preserve external references.
Original Description
Passing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError.
Пакеты
Наименование
sqlparse
pip
Затронутые версииВерсия исправления
< 0.5.0
0.5.0
7.5 High
CVSS3
Дефекты
CWE-674
7.5 High
CVSS3
Дефекты
CWE-674