Astra Linux - уязвимость в ruby-redcloth

A Regular Expression Denial of Service ReDoS issue was discovered in the sanitizehtml function of the redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service DoS by providing a crafted payload...

RedCloth Regular Expression Denial of Service issue

A Regular Expression Denial of Service ReDoS issue was discovered in the sanitizehtml function of RedCloth gem. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

CVE-2023-31606

A Regular Expression Denial of Service ReDoS issue was discovered in the sanitizehtml function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

CVE-2023-31606

A Regular Expression Denial of Service ReDoS issue was discovered in the sanitizehtml function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

CVE-2023-31606

A Regular Expression Denial of Service ReDoS issue was discovered in the sanitizehtml function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

CVE-2023-31606

A Regular Expression Denial of Service ReDoS issue was discovered in the sanitizehtml function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

Design/Logic Flaw

A Regular Expression Denial of Service ReDoS issue was discovered in the sanitizehtml function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

UBUNTU-CVE-2023-31606

A Regular Expression Denial of Service ReDoS issue was discovered in the sanitizehtml function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

CVE-2023-31606

CVE-2023-31606 concerns the RedCloth Ruby gem, specifically a ReDoS in the sanitize_html function of version 4.0.0 that can cause DoS with crafted input. Multiple connected advisories confirm the affected component is the RedCloth Ruby gem, and the root cause is the sanitize_html ReDoS pattern. E...

PT-2023-5396 · Redcloth +4 · Redcloth +4

Name of the Vulnerable Software and Affected Versions: RedCloth gem version 4.0.0 Description: A Regular Expression Denial of Service ReDoS issue was discovered in the sanitize html function. This issue allows attackers to cause a Denial of Service DoS via supplying a crafted payload. The...

Inefficient Regular Expression Complexity

A Regular Expression Denial of Service ReDoS issue was discovered in the sanitizehtml function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

Textile Link Parsing XSS

RedCloth Gem for Ruby contains a flaw that allows a cross-site scripting XSS attack. This flaw exists because the program does not validate input when parsing textile links before returning it to users. This may allow a remote attacker to create a specially crafted request that would execute...