6 matches found
EUVD-2025-27083
Malicious code in bioql PyPI...
CVE-2025-58446
xgrammar is an open-source library for efficient, flexible, and portable structured generation. A grammar optimizer introduced in 0.1.23 processes large grammars 100k characters at very low rates, and can be used for DOS of model providers. This issue is fixed in version 0.1.24. Mitigation Upgrad...
CVE-2025-58446
xgrammar is an open-source library for efficient, flexible, and portable structured generation. A grammar optimizer introduced in 0.1.23 processes large grammars 100k characters at very low rates, and can be used for DOS of model providers. This issue is fixed in version 0.1.24...
CVE-2025-58446 xgrammar vulnerable to denial of service by huge enum grammar
xgrammar is an open-source library for efficient, flexible, and portable structured generation. A grammar optimizer introduced in 0.1.23 processes large grammars 100k characters at very low rates, and can be used for DOS of model providers. This issue is fixed in version 0.1.24...
xgrammar vulnerable to denial of service by huge enum grammar
Summary Provided grammar, would fit in a context window of most of the models, but takes minutes to process in 0.1.23. In testing with 0.1.16 the parser worked fine so this seems to be a regression caused by Earley parser. Details Full reproducer provider in the POC section. The resulting grammar...
PT-2025-36398
Name of the Vulnerable Software and Affected Versions: xgrammar versions 0.1.23 Description: xgrammar is an open-source library for efficient, flexible, and portable structured generation. A grammar optimizer introduced in version 0.1.23 can be exploited to cause a denial-of-service DOS attack on...