An issue in the component ast/parser.go of Open Policy Agent v0.39.0 causes the application to incorrectly interpret every expression, causing a Denial of Service (DoS) via triggering out-of-range memory access.
References
Link | Resource |
---|---|
https://github.com/open-policy-agent/opa/commit/e9d3828db670cbe11129885f37f08cbf04935264 | Patch Third Party Advisory |
Configurations
History
No history.
Information
Published : 2022-05-19 19:15
Updated : 2024-02-28 19:09
NVD link : CVE-2022-28946
Mitre link : CVE-2022-28946
CVE.ORG link : CVE-2022-28946
JSON object : View
Products Affected
openpolicyagent
- open_policy_agent
CWE