An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an integer overflow via long keys or values, with a resultant buffer overflow.
https://github.com/uriparser/uriparser/pull/185
https://github.com/uriparser/uriparser/issues/183
http://www.openwall.com/lists/oss-security/2024/05/06/3
http://www.openwall.com/lists/oss-security/2024/05/06/3