Lucene search
GoogleOSV:GHSA-VRJV-MXR7-VJF8HistoryFeb 23, 2023 - 12:30 a.m.
markdown-it-py Denial of Service vulnerability
2023-02-2300:30:39
Google
osv.dev
8
0.0004 Low
EPSS
Percentile
8.3%
Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input.
References
github.com/executablebooks/markdown-it-py
github.com/executablebooks/markdown-it-py/commit/53ca3e9c2b9e9b295f6abf7f4ad2730a9b70f68c
github.com/executablebooks/markdown-it-py/commit/ae03c6107dfa18e648f6fdd1280f5b89092d5d49
github.com/executablebooks/markdown-it-py/pull/246
nvd.nist.gov/vuln/detail/CVE-2023-26303
Related
osv
osv
PYSEC-2023-24
2023-02-23 00:15:00
CVE-2023-26303
2023-02-23 00:15:11
prion
prion
Input validation
2023-02-23 00:15:00
cve
cve
CVE-2023-26303
2023-02-23 00:15:11
cvelist
cvelist
CVE-2023-26303 markdown-it-py crash on null assertions
2023-02-22 23:44:40
github
github
markdown-it-py Denial of Service vulnerability
2023-02-23 00:30:39
redhatcve
redhatcve
CVE-2023-26303
2023-03-06 11:59:59
debiancve
debiancve
CVE-2023-26303
2023-02-23 00:15:11
veracode
veracode
Denial Of Service (DoS)
2023-03-01 06:06:37
ubuntucve
ubuntucve
CVE-2023-26303
2023-02-23 00:00:00