CVE-2023-22485
CVE-2023-22485 affects cmark-gfm (GitHub’s fork of cmark, C) at versions prior to 0.29.0.gfm.7. The vulnerability is an out-of-bounds read in the validate_protocol function caused by parsing crafted Markdown; impact is described as benign in practice, reading malloc metadata without visible damag...