Go Markdown has an Out-of-bounds Read in SmartypantsRenderer

Summary Processing a malformed input containing a character anywhere in the remaining text with a SmartypantsRenderer will lead to Out of Bounds read or a panic. Details The smartLeftAngle function in html/smartypants.go:367-376 performs an out-of-bounds slice operation when processing a characte...

Out Of Bound Read

github.com/gomarkdown/markdown is vulnerable to Out Of Bound Read Vulnerability. The vulnerability occurs in citation.go due to parsing an element beyond its length, leading to an out-of-bounds read. The attacker can exploit this issue by utilizing the parser.Mmark extension which can lead in a...

FreeBSD : Mailpit affected by vulnerability in included go markdown module (732282a5-5a10-11ee-bca0-001999f8d30b)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 732282a5-5a10-11ee-bca0-001999f8d30b advisory. - The package github.com/gomarkdown/markdown is a Go library for parsing Markdown text and rendering as...

Mailpit affected by vulnerability in included go markdown module

Mailpit author reports: Update Go modules to address CVE-2023-42821 go markdown module DoS...