Lucene search

Md4c Security Vulnerabilities

cve

CVE-2021-30027

md_analyze_line in md4c.c in md4c 0.4.7 allows attackers to trigger use of uninitialized memory, and cause a denial of service via a malformed Markdown...

5.5CVSS

5.3AI Score

0.001EPSS

2021-04-29 03:15 PM

cve

CVE-2020-26148

md_push_block_bytes in md4c.c in md4c 0.4.5 allows attackers to trigger use of uninitialized memory, and cause a denial of service (e.g., assertion failure) via a malformed Markdown...

7.5CVSS

7.3AI Score

0.001EPSS

2020-09-30 06:15 PM

cve

CVE-2018-12112

md_build_attribute in md4c.c in md4c 0.2.6 allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact via a crafted...

7.8CVSS

8.2AI Score

0.001EPSS

2018-06-11 02:29 PM

cve

CVE-2018-12102

md4c 0.2.6 has a NULL pointer dereference in the function md_process_line in md4c.c, related to...

5.5CVSS

7.3AI Score

0.001EPSS

2018-06-11 01:29 PM

cve

CVE-2018-11547

md_is_link_reference_definition_helper in md4c 0.2.5 has a heap-based buffer over-read because md_is_link_label mishandles loop...

9.8CVSS

7.6AI Score

0.002EPSS

2018-05-29 09:29 PM

cve

CVE-2018-11545

md4c 0.2.5 has a heap-based buffer overflow in md_merge_lines because md_is_link_label mishandles the case of a link label composed solely of backslash...

9.8CVSS

7.9AI Score

0.002EPSS

2018-05-29 09:29 PM

cve

CVE-2018-11546

md4c 0.2.5 has a heap-based buffer over-read because md_is_named_entity_contents has an off-by-one...

9.8CVSS

7.6AI Score

0.002EPSS

2018-05-29 09:29 PM

cve

CVE-2018-11536

md4c before 0.2.5 has a heap-based buffer overflow because md_split_simple_pairing_mark mishandles...

9.8CVSS

7.9AI Score

0.002EPSS

2018-05-29 07:29 AM