CVE-2022-31173 Juniper is a GraphQL server library for Rust that is vulnerable to uncontrolled recursion that can lead to a program crash. Upgrading to version 0.15.10 is recommended.
All users advised to upgrade to version 0.15.10. Affected versions are Juniper, Juniper, Juniper (Juniper). This security advisory will be updated when more
CVE-2022-25863 The gatsby-plugin-mdx package from 3.0.0 and 3.15.2 is vulnerable to Deserialization of Untrusted Data due to default configurations that are missing input sanitization.
Previously, it was possible to trigger a Denial of Service (DoS) in the plugin via a specially crafted MDX file, by passing a large number