/

Directory Security Advisories

Security Advisories

CVE-2024-4340

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-4340

CGA ID

CGA-v3hx-x533-rpgf

Severity

7.5

High

CVSS V3

Description

Passing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError.

References

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

© 2024 Chainguard. All Rights Reserved.

Product

Chainguard Images

Why Chainguard

Container Image Security Vulnerability Remediation Compliance and Risk Mitigation Software Supply Chain Security AI/ML Security

Customers

Customer Stories Chainguard Love

Company

About Us Pricing Open Source Careers Newsroom Legal

Resources

Unchained Blog Events Trust Center Documentation