Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-26302

Опубликовано: 22 фев. 2023
Источник: debian

Описание

Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
markdown-it-pyfixed2.1.0-5package

Примечания

  • https://github.com/advisories/GHSA-jrwr-5x3p-hvc3

  • https://github.com/executablebooks/markdown-it-py/pull/247

  • https://github.com/executablebooks/markdown-it-py/commit/53ca3e9c2b9e9b295f6abf7f4ad2730a9b70f68c (v2.2.0)

Связанные уязвимости

ubuntu логотип

CVE-2023-26302

CVSS3: 3.3
ubuntu
почти 3 года назад

Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.

redhat логотип

CVE-2023-26302

CVSS3: 5.5
redhat
почти 3 года назад

Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.

nvd логотип

CVE-2023-26302

CVSS3: 3.3
nvd
почти 3 года назад

Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.

github логотип

GHSA-jrwr-5x3p-hvc3

CVSS3: 5.5
github
почти 3 года назад

markdown-it-py Denial of Service vulnerability in the command line interface