Vulnerability Report: GO-2022-0942
- CVE-2022-37315, GHSA-h3qm-jrrf-cgj3
- Affects: github.com/graphql-go/graphql
- Published: Aug 23, 2022
- Modified: May 20, 2024
graphql-go (aka GraphQL for Go) has infinite recursion in the type definition parser.
Affected Packages
-
PathGo VersionsSymbols
-
before v0.8.1
Aliases
References
- https://github.com/graphql-go/graphql/pull/642
- https://github.com/graphql-go/graphql/pull/642/commits/4188bd5b3877f7badb951b421cf66e0af2eacb22
- https://vuln.go.dev/ID/GO-2022-0942.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.