Vulnerability	Vulnerable Version
H Allocation of Resources Without Limits or Throttling sqlfluffrs is a The SQL Linter for Humans Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling through the `Parser`, `ParseContext`, and Rust parser match-tree handling in the parser components. An attacker can force excessive parse-tree growth by supplying unusually wide or expansive SQL that drives the parser to materialize an excessive number of nodes. This can exhaust CPU and memory during parsing and linting, causing the user’s SQL processing to stall or fail with an unhandled parse error. How to fix Allocation of Resources Without Limits or Throttling? Upgrade `sqlfluffrs` to version 4.2.0 or higher.	[,4.2.0)

Allocation of Resources Without Limits or Throttling

sqlfluffrs is a The SQL Linter for Humans

Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling through the Parser, ParseContext, and Rust parser match-tree handling in the parser components. An attacker can force excessive parse-tree growth by supplying unusually wide or expansive SQL that drives the parser to materialize an excessive number of nodes. This can exhaust CPU and memory during parsing and linting, causing the user’s SQL processing to stall or fail with an unhandled parse error.

How to fix Allocation of Resources Without Limits or Throttling?

Upgrade sqlfluffrs to version 4.2.0 or higher.

[,4.2.0)

Go back to all versions of this package