GHSA-rf74-v2fm-23pw

Source

https://github.com/advisories/GHSA-rf74-v2fm-23pw

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-rf74-v2fm-23pw/GHSA-rf74-v2fm-23pw.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-rf74-v2fm-23pw

Related

CGA-c4fr-9qhw-qcmh

Published

2026-03-18T20:17:43Z

Modified

2026-03-25T23:29:13.324989Z

Severity

5.1 (Medium) CVSS_V4 - CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVSS Calculator

Summary

Natural Language Toolkit (NLTK) has unbounded recursion in JSONTaggedDecoder.decode_obj() may cause DoS

Details

Summary

JSONTaggedDecoder.decode_obj() in nltk/jsontags.py calls itself recursively without any depth limit. A deeply nested JSON structure exceeding sys.getrecursionlimit() (default: 1000) will raise an unhandled RecursionError, crashing the Python process.

Affected code

File: nltk/jsontags.py, lines 47–52

@classmethod
def decode_obj(cls, obj):
    if isinstance(obj, dict):
        obj = {key: cls.decode_obj(val) for (key, val) in obj.items()}
    elif isinstance(obj, list):
        obj = list(cls.decode_obj(val) for val in obj)

Proof of Concept

import sys, json
from nltk.jsontags import JSONTaggedDecoder

depth = sys.getrecursionlimit() + 50  # e.g. 1050
payload = '{"x":' * depth + "null" + "}" * depth

# Raises RecursionError, crashing the process
json.loads(payload, cls=JSONTaggedDecoder)

Impact

Any code path that passes externally-supplied JSON to JSONTaggedDecoder is vulnerable to denial of service. The severity depends on whether such a path exists in the calling code (e.g. nltk/data.py).

Suggested Fix

Add a depth parameter with a hard limit:

@classmethod
def decode_obj(cls, obj, _depth=0):
    if _depth > 100:
        raise ValueError("JSON nesting too deep")
    if isinstance(obj, dict):
        obj = {key: cls.decode_obj(val, _depth + 1) 
               for (key, val) in obj.items()}
    elif isinstance(obj, list):
        obj = list(cls.decode_obj(val, _depth + 1) for val in obj)

Database specific

{
    "cwe_ids": [
        "CWE-674"
    ],
    "github_reviewed_at": "2026-03-18T20:17:43Z",
    "github_reviewed": true,
    "severity": "MODERATE",
    "nvd_published_at": null
}

References

Affected packages

PyPI / nltk

Package

Name: nltk; View open source insights on deps.dev
Purl: pkg:pypi/nltk

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

3.9.3

Affected versions

2.*

2.0.1rc2-git

2.0b4

2.0b5

2.0b6

2.0b7

2.0b8

2.0b9

2.0.1rc1

2.0.1rc3

2.0.1rc4

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5

0.*

0.8

0.9

0.9.3

0.9.4

0.9.5

0.9.6

0.9.7

0.9.8

0.9.9

3.*

3.0.0b1

3.0.0b2

3.0.0

3.0.1

3.0.2

3.0.3

3.0.4

3.0.5

3.1

3.2

3.2.1

3.2.2

3.2.3

3.2.4

3.2.5

3.3

3.4

3.4.1

3.4.2

3.4.3

3.4.4

3.4.5

3.5b1

3.5

3.6

3.6.1

3.6.2

3.6.3

3.6.4

3.6.5

3.6.6

3.6.7

3.7

3.8

3.8.1

3.9b1

3.9

3.9.1

3.9.2

3.9.3

Database specific

source

"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-rf74-v2fm-23pw/GHSA-rf74-v2fm-23pw.json"