CVE-2022-40023
Inefficient Regular Expression Complexity in pypi/Mako
Identifiers
CVE-2022-40023
Package Slug
pypi/Mako
Vulnerability
Inefficient Regular Expression Complexity
Description
Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects babelplugin and linguaplugin.
Affected Versions
All versions before 1.2.2
Solution
Upgrade to version 1.2.2 or above.
Last Modified
2022-09-12
| source |