These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-46374 is a high-severity vulnerability in SQLFluff, a modular SQL linter and auto-formatter. The vulnerability allows an untrusted user to submit a malicious long query to trigger a Denial of Service (DoS) through resource exhaustion. This issue affects deployments where untrusted users can provide SQL queries to be linted. The vulnerability has been patched in version 4.2.0.
CVE-2026-46373 is a high-severity vulnerability in SQLFluff, a modular SQL linter and auto-formatter. The vulnerability allows an untrusted user to submit a malicious query with deliberate excessive nesting to trigger a Denial of Service (DoS) through resource exhaustion. This issue affects deployments where untrusted users can provide SQL queries to be linted. The vulnerability has been patched in version 4.1.0.