Lucene search
K

CVE-2024-28243

🗓️ 25 Mar 2024 19:40:00Reported by Debian Security Bug TrackerType 
debiancve
 debiancve
🔗 security-tracker.debian.org👁 19 Views

KaTeX JavaScript library vulnerability in handling untrusted mathematical expressions can cause near-infinite loops despite setting maxExpand to avoid them. Upgrade to v0.16.10 to fix.

Related
Packages
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2024-28243
25 Mar 202420:15
attackerkb
CNNVD
KaTeX 安全漏洞
25 Mar 202400:00
cnnvd
CVE
CVE-2024-28243
25 Mar 202419:40
cve
Cvelist
CVE-2024-28243 KaTeX's maxExpand bypassed by \edef
25 Mar 202419:40
cvelist
EUVD
EUVD-2024-0839
3 Oct 202520:07
euvd
Github Security Blog
KaTeX's maxExpand bypassed by `\edef`
25 Mar 202419:38
github
NVD
CVE-2024-28243
25 Mar 202420:15
nvd
OpenVAS
Ubuntu: Security Advisory (USN-7572-1)
19 Jun 202500:00
openvas
OSV
CVE-2024-28243 KaTeX's maxExpand bypassed by \edef
25 Mar 202419:40
osv
OSV
DEBIAN-CVE-2024-28243
25 Mar 202420:15
osv
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Debian13anynode-katex0.16.10+~cs6.1.0-1node-katex_0.16.10+~cs6.1.0-1_any.deb
Debian14anynode-katex0.16.10+~cs6.1.0-1node-katex_0.16.10+~cs6.1.0-1_any.deb
Debian999anynode-katex0.16.10+~cs6.1.0-1node-katex_0.16.10+~cs6.1.0-1_any.deb
Debian11anynode-katex0.10.2+dfsg-8node-katex_0.10.2+dfsg-8_any.deb
Debian12anynode-katex0.16.4+~cs6.1.0-1node-katex_0.16.4+~cs6.1.0-1_any.deb

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation