2 matches found
CVE-2026-35201
Discount is an implementation of John Gruber's Markdown markup language in C. From 1.3.1.1 to before 2.2.7.4, a signed length truncation bug causes an out-of-bounds read in the default Markdown parse path. Inputs larger than INTMAX are truncated to a signed int before entering the native parser,...
DISCOUNT Denial of Service Vulnerability
DISCOUNT is a Markdown markup language implementation. A security vulnerability exists in the 'quoteblock' function of the markdown.c file of the libmarkdown.a static link library in DISCOUNT. A remote attacker can exploit this vulnerability to cause a denial of service heap-based buffer...