Markdown vulnerable to Out-of-bounds Read while parsing citations

Summary Parsing malformed markdown input with parser that uses parser.Mmark extension could result in out-of-bounds read vulnerability. Details To exploit the vulnerability, parser needs to have parser.Mmark extension set. The panic occurs inside the citation.go file on the line 69 when the parse...

GHSA-M9XQ-6H2J-65R2 Markdown vulnerable to Out-of-bounds Read while parsing citations

Summary Parsing malformed markdown input with parser that uses parser.Mmark extension could result in out-of-bounds read vulnerability. Details To exploit the vulnerability, parser needs to have parser.Mmark extension set. The panic occurs inside the citation.go file on the line 69 when the parse...

AZL-39828 CVE-2023-42821 affecting package cri-o for versions less than 1.21.7-2

The package github.com/gomarkdown/markdown is a Go library for parsing Markdown text and rendering as HTML. Prior to pseudoversion 0.0.0-20230922105210-14b16010c2ee, which corresponds with commit 14b16010c2ee7ff33a940a541d993bd043a88940, parsing malformed markdown input with parser that uses...

UBUNTU-CVE-2023-42821

The package github.com/gomarkdown/markdown is a Go library for parsing Markdown text and rendering as HTML. Prior to pseudoversion 0.0.0-20230922105210-14b16010c2ee, which corresponds with commit 14b16010c2ee7ff33a940a541d993bd043a88940, parsing malformed markdown input with parser that uses...

Markdown Buffer Error Vulnerability

Markdown is gomarkdown open source a Go library for parsing Markdown text and rendering it as HTML. Previous versions of gomarkdown/markdown 0.0.0-20230922105210-14b16010c2ee had a buffer error vulnerability that stemmed from an out-of-bounds read vulnerability when parsing incorrectly formatted...

PT-2023-28606 · Unknown +1 · Gomarkdown/Markdown +1

Name of the Vulnerable Software and Affected Versions: github.com/gomarkdown/markdown versions prior to 0.0.0-20230922105210-14b16010c2ee Description: The package github.com/gomarkdown/markdown is a Go library for parsing Markdown text and rendering as HTML. Parsing malformed markdown input with ...