Import Source
https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-72862.json
JSON Data
https://api.osv.dev/v1/vulns/AZL-72862
Upstream
Published
2025-12-14T23:15:37Z
Modified
2026-04-21T04:33:43.929431Z
Summary
CVE-2025-67899 affecting package uriparser 0.9.7-2
Details

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

References

Affected packages

Azure Linux:2 / uriparser

Package

Name
uriparser
Purl
pkg:rpm/azure-linux/uriparser

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
0.9.7-2

Database specific

source
"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-72862.json"