Lucene search

Discount Project Security Vulnerabilities

cve

CVE-2018-11468

The __mkd_trim_line function in mkdio.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2html.

5.5CVSS

5.2AI Score

0.002EPSS

2018-05-25 01:29 PM

109

cve

CVE-2018-11503

The isfootnote function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2html.

5.5CVSS

5.2AI Score

0.004EPSS

2018-05-26 09:29 PM

cve

CVE-2018-11504

The islist function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2html.

5.5CVSS

5.2AI Score

0.004EPSS

2018-05-26 09:29 PM

cve

CVE-2018-12495

The quoteblock function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.

5.5CVSS

5.2AI Score

0.003EPSS

2018-06-15 06:29 PM

100