Lucene search
K

254 matches found

Fedora
Fedora
added 2024/03/07 10:33 p.m.23 views

[SECURITY] Fedora 40 Update: jflex-1.7.0-18.fc40

JFlex is a lexical analyzer generator also known as scanner generator for Java, written in Java. It is also a rewrite of the very useful tool JLex which was developed by Elliot Berk at Princeton University. As Vern Paxson states for his C/C++ tool flex: They do not share any code though. JFlex is...

8.8CVSS7AI score0.02557EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2024/02/29 7:47 p.m.3 views

pygments: ReDoS in pygments

A denial-of-service vulnerability related to regular expressions was discovered in Pygments, specifically in the file pygments/lexers/smithy.py. An attacker could exploit this flaw by sending a carefully crafted request, leading to a denial-of-service situation...

5.5CVSS7.2AI score0.00503EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2024/01/31 12:0 a.m.8 views

The vulnerability in the file pygments/lexers/smithy.py of the SmithyLexer component of the Pygments syntax highlighter allows a hacker to cause a service failure.

The vulnerability in the pygments/lexers/smithy.py file of the SmithyLexer component of the Pygments syntax highlighter is related to the use of a regular expression with inefficient computational complexity. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.2AI score0.00503EPSS
Exploits1References5Affected Software2
OSV
OSV
added 2023/09/28 11:6 a.m.3 views

OESA-2023-1683 python-mako security update

Python-mako is a template library for Python. It provides a familiar, non-XML syntax which compiles into Python modules for maximum performance. Mako's syntax and API borrows from the best ideas of many others, including Django templates, Cheetah, Myghty, and Genshi. Security Fixes: Sqlalchemy ma...

7.5CVSS7AI score0.01718EPSS
Exploits1References2
Amazon
Amazon
added 2023/08/09 12:0 a.m.8 views

Medium: python-mako

Issue Overview: Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects babelplugin and linguaplugin. CVE-2022-40023 Affected Packages: python-mako Issue Correction: Run dnf update python-mako --releasever...

7.5CVSS7.9AI score0.01718EPSS
Exploits1
OSV
OSV
added 2023/08/06 11:5 a.m.4 views

OESA-2023-1479 python-pygments security update

Pygments is a generic syntax highlighter suitable for use in code hosting, forums, wikis or other applications that need to prettify source code. Security Fixes: A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.CVE-2022-40896...

5.5CVSS7.3AI score0.00503EPSS
Exploits1References2
OSV
OSV
added 2023/08/06 11:5 a.m.3 views

OESA-2023-1477 python-pygments security update

Pygments is a generic syntax highlighter suitable for use in code hosting, forums, wikis or other applications that need to prettify source code. Security Fixes: A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.CVE-2022-40896...

5.5CVSS7.3AI score0.00503EPSS
Exploits1References2
OSV
OSV
added 2023/08/06 11:5 a.m.4 views

OESA-2023-1478 python-pygments security update

Pygments is a generic syntax highlighter suitable for use in code hosting, forums, wikis or other applications that need to prettify source code. Security Fixes: A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.CVE-2022-40896...

5.5CVSS7.3AI score0.00503EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/07/26 12:0 a.m.37 views

EulerOS Virtualization 3.0.6.6 : python-mako (EulerOS-SA-2023-2416)

According to the versions of the python-mako package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This...

7.5CVSS7.4AI score0.01718EPSS
Exploits1References2
Amazon
Amazon
added 2023/07/25 12:0 a.m.28 views

Medium: python-mako

Issue Overview: Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects babelplugin and linguaplugin. CVE-2022-40023 Affected Packages: python-mako Note: This advisory is applicable to Amazon Linux 2 AL2 Core...

7.5CVSS8.1AI score0.01718EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/07/21 2:25 a.m.4 views

SUSE CVE-2022-40896

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer...

5.5CVSS8.4AI score0.00503EPSS
Exploits1References3
OSV
OSV
added 2023/07/19 3:15 p.m.10 views

AZL-27502 CVE-2022-40896 affecting package python-pygments for versions less than 2.4.2-1

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer...

5.5CVSS6.4AI score0.00503EPSS
Exploits1References1
OSV
OSV
added 2023/07/19 3:15 p.m.7 views

AZL-35139 CVE-2022-40896 affecting package python-pygments for versions less than 2.4.2-1

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer...

5.5CVSS6.4AI score0.00503EPSS
Exploits1References1
OSV
OSV
added 2023/07/19 3:15 p.m.1 views

DEBIAN-CVE-2022-40896

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer...

5.5CVSS6.1AI score0.00503EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/07/19 3:15 p.m.5 views

CVE-2022-40896

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer...

5.5CVSS6.3AI score0.00503EPSS
Exploits1References8
OSV
OSV
added 2023/07/19 3:15 p.m.4 views

UBUNTU-CVE-2022-40896

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer...

5.5CVSS6.4AI score0.00503EPSS
Exploits1References6
OSV
OSV
added 2023/07/19 3:15 p.m.7 views

PYSEC-2023-117

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer...

5.5CVSS6.4AI score0.00503EPSS
Exploits1References4
PyPA
PyPA
added 2023/07/19 3:15 p.m.8 views

PYSEC-2023-117

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer...

5.5CVSS7AI score0.00503EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2023/07/19 12:0 a.m.24 views

Matthäus G. Chajdas pygments 代码问题漏洞

Matthäus G. Chajdas pygments is a Matthäus G. Chajdas open source application. It provides generic syntax highlighting tool functionality. A security vulnerability exists in pygments 2.15.0 and earlier versions, which stems from a regular expression denial of service ReDoS vulnerability in...

5.5CVSS6.2AI score0.00503EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2023/07/19 12:0 a.m.3 views

PT-2023-8449

Name of the Vulnerable Software and Affected Versions Pygments versions prior to 2.15.0 Description A ReDoS issue was discovered in pygments/lexers/smithy.py via SmithyLexer. The issue is related to the use of a regular expression with inefficient computational complexity. Exploitation of the iss...

6.8CVSS6.4AI score0.00503EPSS
Exploits1References50
Rows per page
Query Builder