GHSA-5XM9-X7X4-4J5X Elasticsearch Vulnerable to Stack Overflow due to a Large Recursion

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow...

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS through the handling of Well-Known Text formatted strings with nested GeometryCollection objects. An attacker can cause a stackoverflow by sending specially crafted requests that exploit this recursion. Details...

CVE-2024-52981

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow...

Elasticsearch 7.17.24 and 8.15.1 Security Update (ESA-2024-37)

Elasticsearch Uncontrolled Resource Consumption vulnerability ESA-2024-37 An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow. Affected Versions: Elasticsearch versions 7.17....

Elastic Elasticsearch 资源管理错误漏洞

Elastic Elasticsearch is a search engine based on the Lucene library from the Dutch company Elastic. A resource management error vulnerability exists in Elastic Elasticsearch versions 7.17.0 through 7.17.23 and 8.0.0 through 8.15.0, which stems from a recursive issue when processing format string...