Search CVE reports

Toggle filters

1 – 3 of 3 results

CVE-2024-4340

Medium priority
Fixed

Passing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError.

1 affected package

sqlparse

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
sqlparse Fixed Fixed Not affected Not affected Not affected
Show less packages

CVE-2023-30608

Medium priority
Fixed

sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service). This issue was introduced by commit...

1 affected package

sqlparse

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
sqlparse Fixed Fixed Fixed Not affected
Show less packages

CVE-2021-32839

Medium priority
Fixed

sqlparse is a non-validating SQL parser module for Python. In sqlparse versions 0.4.0 and 0.4.1 there is a regular Expression Denial of Service in sqlparse vulnerability. The regular expression may cause exponential backtracking...

1 affected package

sqlparse

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
sqlparse Fixed Not affected Not affected Not affected
Show less packages