4 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-16114
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The marked module is vulnerable to a regular expression denial of service. Based on the information published in the public issue, 1k characters can block for...
CVE-2017-16114
The marked module is vulnerable to a regular expression denial of service. Based on the information published in the public issue, 1k characters can block for around 6 seconds...
08cms (=1.0.0), 0ad-tools (=0.0.1) +9164 more potentially affected by CVE-2017-16114 via marked (>=0.0.1 <=0.3.7)
marked NPM version =0.0.1, =0.0.1, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.1 and more Source cves: CVE-2017-16114 Source advisory: OSV:GHSA-X5PG-88WF-QQ4P...
CVE-2017-16114
CVE-2017-16114 affects the marked Markdown parser module. Vulnerable behavior is a regular expression denial of service when processing untrusted input; measurements report about 1,000 characters blocking the event loop for around 6 seconds. Affected environments are those that install the marked...