3 matches found
RHEL 8 : rubygem-asciidoctor (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - rubygem-asciidoctor: Infinite loop in the nextblock method CVE-2018-18385 Note that Nessus has not tested for this...
CVE-2018-18385
Asciidoctor in versions 1.5.8 allows remote attackers to cause a denial of service infinite loop. The loop was caused by the fact that Parser.nextblock was not exhausting all the lines in the reader as the while loop expected it would. This was happening because the regular expression that detect...
CVE-2018-18385
CVE-2018-18385 — Multiple sources confirm a denial-of-service vulnerability in Asciidoctor when running with versions