MiracleLinux 8 : pandoc-2.0.6-6.el8 (AXSA:2022-3835:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3835:01 advisory. cmark-gfm: possible RCE due to integer overflow CVE-2022-24724 Tenable has extracted the preceding description block directly from the MiracleLinux security...

HSEC-2025-0007 cmark-gfm: resource exhaustion due to quadratic complexity in parser

cmark-gfm: resource exhaustion due to quadratic complexity in parser cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service, due to...

TencentOS Server 4: python-cmarkgfm (TSSA-2025:0086)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0086 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

EUVD-2023-26630

Malicious code in bioql PyPI...

EUVD-2022-41748

Malicious code in bioql PyPI...

EUVD-2023-26631

Malicious code in bioql PyPI...

EUVD-2022-29578

Malicious code in bioql PyPI...

EUVD-2023-26632

Malicious code in bioql PyPI...

EUVD-2023-28818

Malicious code in bioql PyPI...

EUVD-2023-30291

Malicious code in bioql PyPI...

EUVD-2023-41361

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-26485

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. A polynomial time complexity issue in cmark-gfm may lead to...

pandoc security update

An update is available for pandoc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Pandoc is a Haskell library for converting from one markup format to another,...

RLSA-2025:8427 Moderate: pandoc security update

Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. It can read several dialects of Markdown and subsets of HTML, reStructuredText, LaTeX, DocBook, JATS, MediaWiki markup, TWiki markup, TikiWiki markup, Creole 1.0, Haddock...

cmark-gfm: Quadratic complexity bugs may lead to a denial of service

A flaw was found in CommonMarker. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service...

Moderate: pandoc security update

Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. It can read several dialects of Markdown and subsets of HTML, reStructuredText, LaTeX, DocBook, JATS, MediaWiki markup, TWiki markup, TikiWiki markup, Creole 1.0, Haddock...

CVE-2023-37463

cmark-gfm is an extended version of the C reference implementation of CommonMark, a rationalized version of Markdown syntax with a spec. Three polynomial time complexity issues in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service. These vulnerabilities have been...

Linux Distros Unpatched Vulnerability : CVE-2023-22485

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. In versions prior 0.29.0.gfm.7, a crafted markdown document ca...

Linux Distros Unpatched Vulnerability : CVE-2023-24824

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. A polynomial time complexity issue in cmark-gfm may lead to...

Linux Distros Unpatched Vulnerability : CVE-2023-37463

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cmark-gfm is an extended version of the C reference implementation of CommonMark, a rationalized version of Markdown syntax with a spec. Three polynomial time...