Gửi #550136: https://github.com/joelittlejohn/ https://github.com/joelittlejohn/jsonschema2pojo/ 1.2.2 Denial of Servicethông tin

tiêu đềhttps://github.com/joelittlejohn/ https://github.com/joelittlejohn/jsonschema2pojo/ 1.2.2 Denial of Service
Mô tảfind a stackoverflow in https://github.com/joelittlejohn/jsonschema2pojo/ which may lead to a Denial of Service (DoS) via crafted JSON. when use mvn jsonschema2pojo:generate process a json like { "$ref": "#", "definitions": { "User": { "type": "string" } } } It will report an StackOverflowError , like --------------------------------------------------- Exception in thread "main" java.lang.StackOverflowError at java.net.URI.appendSchemeSpecificPart(URI.java:1909) at java.net.URI.toString(URI.java:1941) at java.net.URI.<init>(URI.java:817) at org.jsonschema2pojo.SchemaStore.create(SchemaStore.java:114) at org.jsonschema2pojo.rules.SchemaRule.apply(SchemaRule.java:69) at org.jsonschema2pojo.rules.SchemaRule.apply(SchemaRule.java:76) at org.jsonschema2pojo.rules.SchemaRule.apply(SchemaRule.java:76) BUG_Author:K1ling and fdt
Nguồn⚠️ https://github.com/joelittlejohn/jsonschema2pojo/issues/1672
Người dùng
 kar3nk (UID 83682)
Đệ trình03/04/2025 09:35 (cách đây 1 Năm)
Kiểm duyệt14/04/2025 14:38 (11 days later)
Trạng tháiđược chấp nhận
Mục VulDB304643 [joelittlejohn jsonschema2pojo 1.2.2 JSON File SchemaRule.java apply tràn bộ đệm]
điểm20

TrướcTổng QuanTiếp theo

Do you know our Splunk app?

Download it now for free!