CVE-2018-18482
MEDIUMlibpg_query 10-1.0.2 - Denial of Service via Memory Leak in pg_query_raw_parse
Title source: llmDescription
An issue was discovered in libpg_query 10-1.0.2. There is a memory leak in pg_query_raw_parse in pg_query_parse.c, which might lead to a denial of service.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/lfittl/libpg_query/issues/49
Scores
CVSS v3
6.5
EPSS
0.0115
EPSS Percentile
62.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-772
Status
published
Products (3)
libpg_query_project/libpg_query
10-1.0.2
pypi/pg-query
0 - 0.28PyPI
pypi/pglast
0 - 0.28PyPI
Published
Oct 18, 2018
Tracked Since
Feb 18, 2026