exploitDog

GHSA-g56x-7j6w-g8r8

Опубликовано: 18 дек. 2023

Источник: github

Github: Прошло ревью

CVSS3: 7.5

Описание

Grackle has StackOverflowError in GraphQL query processing

Impact

Prior to this fix, the GraphQL query parsing was vulnerable to StackOverflowErrors. The possibility of small queries resulting in stack overflow is a potential denial of service vulnerability.

This potentially affects all applications using Grackle which have untrusted users.

[!CAUTION]
No specific knowledge of an application's GraphQL schema would be required to construct a pathological query.

Patches

The stack overflow issues have been resolved in the v0.18.0 release of Grackle.

Workarounds

Users could interpose a sanitizing layer in between untrusted input and Grackle query processing.

Ссылки

Пакеты

Наименование

org.typelevel:grackle-core_2.13

maven

Затронутые версииВерсия исправления

< 0.18.0

0.18.0

Наименование

org.typelevel:grackle-core_3

maven

Затронутые версииВерсия исправления

< 0.18.0

0.18.0

Наименование

org.typelevel:grackle-core_sjs1_2.13

maven

Затронутые версииВерсия исправления

< 0.18.0

0.18.0

Наименование

org.typelevel:grackle-core_sjs1_3

maven

Затронутые версииВерсия исправления

< 0.18.0

0.18.0

Наименование

org.typelevel:grackle-core_native0.4_2.13

maven

Затронутые версииВерсия исправления

< 0.18.0

0.18.0

Наименование

org.typelevel:grackle-core_native0.4_3

maven

Затронутые версииВерсия исправления

< 0.18.0

0.18.0

Наименование

edu.gemini:gsp-graphql-core_2.13

maven

Затронутые версииВерсия исправления

<= 0.14.0

Отсутствует

Наименование

edu.gemini:gsp-graphql-core_3

maven

Затронутые версииВерсия исправления

<= 0.14.0

Отсутствует

Наименование

edu.gemini:gsp-graphql-core_sjs1_2.13

maven

Затронутые версииВерсия исправления

<= 0.14.0

Отсутствует

Наименование

edu.gemini:gsp-graphql-core_sjs1_3

maven

Затронутые версииВерсия исправления

<= 0.14.0

Отсутствует

Наименование

edu.gemini:gsp-graphql-core_native0.4_2.13

maven

Затронутые версииВерсия исправления

<= 0.14.0

Отсутствует

Наименование

edu.gemini:gsp-graphql-core_native0.4_3

maven

Затронутые версииВерсия исправления

<= 0.14.0

Отсутствует

EPSS

Процентиль: 66%

0.00524

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-400

Связанные уязвимости

CVE-2023-50730

CVSS3: 7.5

nvd

около 2 лет назад

Grackle is a GraphQL server written in functional Scala, built on the Typelevel stack. The GraphQL specification requires that GraphQL fragments must not form cycles, either directly or indirectly. Prior to Grackle version 0.18.0, that requirement wasn't checked, and queries with cyclic fragments would have been accepted for type checking and compilation. The attempted compilation of such fragments would result in a JVM `StackOverflowError` being thrown. Some knowledge of an applications GraphQL schema would be required to construct such a query, however no knowledge of any application-specific performance or other behavioural characteristics would be needed. Grackle uses the cats-parse library for parsing GraphQL queries. Prior to version 0.18.0, Grackle made use of the cats-parse `recursive` operator. However, `recursive` is not currently stack safe. `recursive` was used in three places in the parser: nested selection sets, nested input values (lists and objects), and nested list ty

EPSS

Процентиль: 66%

0.00524

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-400