CVE-2024-12391

Name of the Vulnerable Software and Affected Versions binary-husky/gpt academic versions prior to commit 310122f

Description A Regular Expression Denial of Service (ReDoS) issue exists in the 解析项目源码（手动指定和筛选源码文件类型） function. This function allows the execution of user-provided regular expressions. Specific regular expressions can cause the Python RE engine to take exponential time to execute, resulting in a Denial of Service (DoS) condition. An attacker controlling both the regular expression and the search string can exploit this to hang the server for an arbitrary duration.

Recommendations Update to a version later than commit 310122f.