CNNVD-202512-2572 Information

CNNVD ID

CNNVD-202512-2572

Related CVE

CVE-2025-67899

• CNNVD Published: 2025-12-14

Description (Chinese)

Uriparser是一个用 C89 编写的严格符合 Rfc 3986 的 Uri 解析和处理库。 Uriparser 0.9.9及之前版本存在安全漏洞，该漏洞源于允许无限递归和堆栈消耗。

Description (English)

Uriparser is a Uri parsing and processing library written in C89 that strictly corresponds to Rfc 3986. There is a security loophole in the Uriparser 0.9.9 and earlier versions, which stems from allowing for infinity and stack consumption.

Hazard Level

Critical

Vulnerability Type

其他

Published

2025-12-14

Last Modified

2026-02-24

References

https://github.com/uriparser/uriparser/issues/282 https://github.com/uriparser/uriparser/pull/284