Уязвимость программы подсветки синтаксиса Pygments, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании

In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to ReDoS. By crafting malicious input, an attacker can cause a denial of service.

In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to ReDoS. By crafting malicious input, an attacker can cause a denial of service.

In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to ReDoS. By crafting malicious input, an attacker can cause a denial of service.

In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming ...

Security update for python-Pygments

Security update for python-Pygments

Security update for python-Pygments

Security update for python-Pygments

Security update for python-Pygments

Security update for python-Pygments

Security update for python-Pygments

Pygments vulnerable to Regular Expression Denial of Service (ReDoS)

Moderate: python36:3.6 security and bug fix update

ELSA-2021-9553: resource-agents security update (MODERATE)

ELSA-2021-4150: python36:3.6 security and bug fix update (MODERATE)

Moderate: python27:2.7 security update

ELSA-2021-4151: python27:2.7 security update (MODERATE)