PatchSiren

jg-rp CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH jg-rp CVE published 2026-07-09

CVE-2026-55865

CVE-2026-55865 is a denial of service vulnerability in Python Liquid, a Python engine for the Liquid template language. Prior to version 2.2.1, a malformed {% case %} tag without an associated {% when %} or {% else %} block and no terminating {% endcase %} tag can cause an infinite loop at parse time. This issue allows malicious template authors to craft templates for a denial of service attack. The vulne [truncated]