OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-15 22:04:38 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
b40bd2ae822ca05d84ef0bfad0fdd71a8a15883a
advisory-db/crates/juniper/RUSTSEC-2022-0038.md
github-actions[bot] ec93834e77 Assigned RUSTSEC-2022-0037 to async-graphql, RUSTSEC-2022-0038 to juniper (#1298) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
2022-08-03 03:59:55 +10:00

19 lines
532 B
Markdown
Raw Blame History

```toml
[advisory]
id = "RUSTSEC-2022-0038"
package = "juniper"
date = "2022-07-28"
url = "https://github.com/graphql-rust/juniper/security/advisories/GHSA-4rx6-g5vg-5f3j"
categories = ["denial-of-service"]
cvss = "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
aliases = ["GHSA-4rx6-g5vg-5f3j", "CVE-2022-31173"]
related = ["GHSA-xq3c-8gqm-v648"]
[versions]
patched = [">= 0.15.10"]
```
# Denial of service on deeply nested fragment requests
Deeply nested fragments in a GraphQL request may cause a stack overflow in the server.
Reference in New Issue View Git Blame Copy Permalink