xgrammar vulnerable to DoS via multi-layer nesting
The multi-level nested syntax caused a segmentation fault (core dump).
Advisories for Pypi/Xgrammar package
2026
2025
xgrammar vulnerable to denial of service by huge enum grammar
Provided grammar, would fit in a context window of most of the models, but takes minutes to process in 0.1.23. In testing with 0.1.16 the parser worked fine so this seems to be a regression caused by Earley parser.
XGrammar affected by Denial of Service by infinite recursion grammars
This issue: http://github.com/mlc-ai/xgrammar/issues/250 should have it's own security advisory. Since several tools accept and pass user supplied grammars to xgrammar, and it is so easy to trigger it seems like a High.
xgrammar Vulnerable to Denial of Service (DoS) by abusing unbounded cache in memory
Xgrammar includes a cache for compiled grammars to increase performance with repeated use of the same grammar. This cache is held in memory. Since the cache is unbounded, a system making use of xgrammar can be abused to fill up a host's memory and case a denial of service. For example, sending many small requests to an LLM inference server with unique JSON schemas would eventually cause this denial of …
Duplicate
This advisory duplicates another.