VYPR

rpm package

suse/python-sqlparse&distro=SUSE Linux Enterprise Real Time 15 SP3

pkg:rpm/suse/python-sqlparse&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3

Vulnerabilities (1)

  • CVE-2023-30608Apr 18, 2023
    affected < 0.4.2-150300.3.6.1fixed 0.4.2-150300.3.6.1

    sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service). This issue was introduced by commit `e75e358`. The vulnerability may lead to Denial of