Lucene search
K

26 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-49851

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, Mistune is vulnerable to a CPU exhaustion DoS due to superlinear approximately O...

8.7CVSS5.9AI score0.0035EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/24 7:16 p.m.5 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the parselinktext function of mistune/inlineparser.py, which performs a regex search inside a loop that advances one character at a time when parsing fails, producing On² behavior...

8.7CVSS5.8AI score0.0035EPSS
Exploits0References2
NVD
NVD
added 2026/06/24 6:17 p.m.16 views

CVE-2026-49851

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, Mistune is vulnerable to a CPU exhaustion DoS due to superlinear approximately On² behavior in parselinktext. When parsing Markdown containing many consecutive characters, parselinktext repeatedly scans the input usin...

8.7CVSS0.0035EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/06/24 5:5 p.m.5 views

CVE-2026-49851 Mistune: Potential DoS via quadratic-time parsing in parse_link_text

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, Mistune is vulnerable to a CPU exhaustion DoS due to superlinear approximately On² behavior in parselinktext. When parsing Markdown containing many consecutive characters, parselinktext repeatedly scans the input usin...

8.7CVSS5.9AI score0.0035EPSS
Exploits0References1
CVE
CVE
added 2026/06/24 5:5 p.m.10 views

CVE-2026-49851

Mistune (Python Markdown parser) prior to 3.3.0 is vulnerable to CPU exhaustion DoS due to quadratic-time behavior in parse_link_text when parsing many consecutive '[' characters. The code repeatedly scans input with a regex inside a loop, yielding O(n^2) runtime on affected inputs and enabling a...

8.7CVSS5.9AI score0.0035EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/24 5:5 p.m.27 views

CVE-2026-49851 Mistune: Potential DoS via quadratic-time parsing in parse_link_text

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, Mistune is vulnerable to a CPU exhaustion DoS due to superlinear approximately On² behavior in parselinktext. When parsing Markdown containing many consecutive characters, parselinktext repeatedly scans the input usin...

8.7CVSS0.0035EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: media:v4l2-core: A potential resource leak was fixed in v4l2fwnodeparselink. If the fwnodegraphgetremoteendpoint function fails, fwnode is known to be NULL. Therefore, fwnodehandlePUT is a no-op. Instead, the reference taken...

6AI score0.00184EPSS
Exploits0References2
OSV
OSV
added 2026/05/06 4:56 p.m.5 views

GHSA-HJPH-F4MC-WX4C Duplicate Advisory: Mistune has a ReDoS in LINK_TITLE_RE that allows denial of service via crafted Markdown input

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-8mp2-v27r-99xp. This link is maintained to preserve external references. Original Description Summary Denial-of-Service DoS vulnerability in the Mistune Markdown parser. The issue occurs when processing speciall...

8.7CVSS5.8AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/06 4:56 p.m.9 views

Duplicate Advisory: Mistune has a ReDoS in LINK_TITLE_RE that allows denial of service via crafted Markdown input

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-8mp2-v27r-99xp. This link is maintained to preserve external references. Original Description Summary Denial-of-Service DoS vulnerability in the Mistune Markdown parser. The issue occurs when processing speciall...

5.8AI score
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-54183

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: v4l2-core: Fix a potential resource leak in v4l2fwnodeparselink If fwnodegraphgetremoteendpoint fails, 'fwnode' is known to be NULL, so fwnodehandleput i...

6.2AI score0.00184EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/31 12:52 p.m.7 views

CVE-2023-54183

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: Fix a potential resource leak in v4l2fwnodeparselink If fwnodegraphgetremoteendpoint fails, 'fwnode' is known to be NULL, so fwnodehandleput is a no-op. Release the reference taken from a previous...

5.8AI score0.00184EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/31 12:29 a.m.5 views

SUSE CVE-2023-54183

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: Fix a potential resource leak in v4l2fwnodeparselink If fwnodegraphgetremoteendpoint fails, 'fwnode' is known to be NULL, so fwnodehandleput is a no-op. Release the reference taken from a previous...

4.7CVSS6.5AI score0.00184EPSS
Exploits0References21
EUVD
EUVD
added 2025/12/30 3:30 p.m.5 views

EUVD-2023-60458

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: Fix a potential resource leak in v4l2fwnodeparselink If fwnodegraphgetremoteendpoint fails, 'fwnode' is known to be NULL, so fwnodehandleput is a no-op. Release the reference taken from a previous...

5.9AI score0.00184EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.13 views

CVE-2023-54183

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: Fix a potential resource leak in v4l2fwnodeparselink If fwnodegraphgetremoteendpoint fails, 'fwnode' is known to be NULL, so fwnodehandleput is a no-op. Release the reference taken from a previous...

5.9AI score0.00184EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/12/30 12:8 p.m.23 views

CVE-2023-54183 media: v4l2-core: Fix a potential resource leak in v4l2_fwnode_parse_link()

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: Fix a potential resource leak in v4l2fwnodeparselink If fwnodegraphgetremoteendpoint fails, 'fwnode' is known to be NULL, so fwnodehandleput is a no-op. Release the reference taken from a previous...

0.00184EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/12/30 12:8 p.m.2 views

CVE-2023-54183

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: Fix a potential resource leak in v4l2fwnodeparselink If fwnodegraphgetremoteendpoint fails, 'fwnode' is known to be NULL, so fwnodehandleput is a no-op. Release the reference taken from a previous...

5.3AI score0.00184EPSS
Exploits0
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper resource release in the v4l2fwnodeparselink function, which could lead to a resource leak...

6.1AI score0.00184EPSS
Exploits0References9
EUVD
EUVD
added 2025/12/24 3:30 p.m.6 views

EUVD-2023-60251

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: common: Fix refcount leak in parsedailinkinfo Add missing ofnodeputs before the returns to balance ofnodegets and ofnodeputs, which may get unbalanced in case the for loop 'foreachavailablechildofnode' returns ear...

5.9AI score0.00155EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-0673

Malicious code in bioql PyPI...

7.5CVSS8.2AI score0.01831EPSS
Exploits1References5
vulnersOsv
vulnersOsv
added 2022/01/06 9:37 p.m.10 views

@abi-software/flatmap-viewer (>=1.0.2 <=2.1.0-beta.1), @abi-software/flatmapvuer (>=0.1.0 <=0.1.33-beta-1) +854 more potentially affected by CVE-2021-23490 via parse-link-header (>=0.1.0 <=1.0.1)

parse-link-header NPM version =0.1.0, =1.0.2, =0.1.0, =1.1.0, =2.0.0, =0.1.0, =0.1.0, =1.5.1, =1.1.0, =1.1.0, =0.1.0, =1.5.1, =0.2.0, =1.5.1, =2.0.0-alpha.1, =2.0.0-alpha.11 and more Source cves: CVE-2021-23490 Source advisory: OSV:GHSA-Q674-XM3X-2926...

7.5CVSS7AI score0.01831EPSS
Exploits1
Rows per page
Query Builder