6 matches found
CVE-2023-50730
CVE-2023-50730 affects Grackle, a Scala GraphQL server. The vulnerabilities arise from two stack-related issues: (1) cyclic GraphQL fragments could trigger a JVM StackOverflowError during type checking/compilation, and (2) the cats-parse recursive operator used in the parser isn’t stack-safe, ena...
edu.gemini:clue-generator_2.13 (>=0.12.0 <=0.35.4), edu.gemini:clue-macro_2.13 (>=0.2.2 <=0.12.2) +9 more potentially affected by CVE-2023-50730 via edu.gemini:gsp-graphql-core_2.13 (>=0.0.1 <=0.14.0)
edu.gemini:gsp-graphql-core2.13 MAVEN version =0.0.1, =0.12.0, =0.2.2, =0.0.18, =0.0.1, =0.10.0, =0.0.1, =0.0.2, =0.0.26, =0.0.26, =0.5.6, =0.6.6 Source cves: CVE-2023-50730 Source advisory: OSV:GHSA-G56X-7J6W-G8R8...
org.typelevel:grackle-circe_sjs1_3 (>=0.15.0 <=0.17.2), org.typelevel:grackle-generic_sjs1_3 (>=0.15.0 <=0.17.2) +2 more potentially affected by CVE-2023-50730 via org.typelevel:grackle-core_sjs1_3 (>=0.15.0 <=0.17.2)
org.typelevel:grackle-coresjs13 MAVEN version =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.17.2 Source cves: CVE-2023-50730 Source advisory: OSV:GHSA-G56X-7J6W-G8R8...
org.typelevel:grackle-circe_native0.4_2.13 (>=0.15.0 <=0.17.2), org.typelevel:grackle-generic_native0.4_2.13 (>=0.15.0 <=0.17.2) +2 more potentially affected by CVE-2023-50730 via org.typelevel:grackle-core_native0.4_2.13 (>=0.15.0 <=0.17.2)
org.typelevel:grackle-corenative0.42.13 MAVEN version =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.17.2 Source cves: CVE-2023-50730 Source advisory: OSV:GHSA-G56X-7J6W-G8R8...
edu.gemini:gsp-graphql-circe_3 (>=0.0.47 <=0.14.0), edu.gemini:gsp-graphql-doobie-pg_3 (>=0.10.0 <=0.14.0) +7 more potentially affected by CVE-2023-50730 via edu.gemini:gsp-graphql-core_3 (>=0.0.47 <=0.14.0)
edu.gemini:gsp-graphql-core3 MAVEN version =0.0.47, =0.0.47, =0.10.0, =0.0.47, =0.0.48, =0.0.47, =0.0.47, =0.5.6, =0.5.0, =0.20.3 Source cves: CVE-2023-50730 Source advisory: OSV:GHSA-G56X-7J6W-G8R8...
edu.gemini:gsp-graphql-circe_sjs1_2.13 (>=0.13.0 <=0.14.0), edu.gemini:gsp-graphql-generic_sjs1_2.13 (>=0.13.0 <=0.14.0) +2 more potentially affected by CVE-2023-50730 via edu.gemini:gsp-graphql-core_sjs1_2.13 (>=0.13.0 <=0.14.0)
edu.gemini:gsp-graphql-coresjs12.13 MAVEN version =0.13.0, =0.13.0, =0.13.0, =0.13.0, =0.13.0, =0.14.0 Source cves: CVE-2023-50730 Source advisory: OSV:GHSA-G56X-7J6W-G8R8...