{"id":"OSV-2025-436","summary":"Security exception in graphql.parser.GraphqlAntlrToLanguage.createNonNullType","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=422217211\n\n```\nCrash type: Security exception\nCrash state:\ngraphql.parser.GraphqlAntlrToLanguage.createNonNullType\ngraphql.parser.GraphqlAntlrToLanguage.createType\ngraphql.parser.GraphqlAntlrToLanguage.createListType\n```\n","modified":"2025-06-05T00:11:24.382444Z","published":"2025-06-05T00:11:24.382209Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=422217211"}],"affected":[{"package":{"name":"graphql-java","ecosystem":"OSS-Fuzz","purl":"pkg:generic/graphql-java"},"ranges":[{"type":"GIT","repo":"https://github.com/graphql-java/graphql-java","events":[{"introduced":"f52305325593dcec70aba9c4a5717b18b6543fa0"},{"fixed":"9c927258ecbf5befa9990c134deb752835bcee9d"}]}],"versions":["25.0.beta-1","v22.0","v22.1","v22.2","v22.3","v22.4","v23.0","v23.1","v24.0","v24.1","v24.2","v25.0-beta-3","v25.0.beta-2","v25.0.beta-4","v25.0.beta-5"],"ecosystem_specific":{"severity":"LOW"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/graphql-java/OSV-2025-436.yaml","introduced_range":"ef846bf7a25a4deb8e860c3be2003968c9fcc493:0bc0845f18c33af5859288ce15244e804a92fc2c","fixed_range":"bf6c50a12dde38c1c91a17ecc086137a6f0f5113:9c927258ecbf5befa9990c134deb752835bcee9d"}}],"schema_version":"1.7.3"}