CVE-2017-13692

2017-08-25T00:00:00
ID UB:CVE-2017-13692
Type ubuntucve
Reporter ubuntu.com
Modified 2017-08-25T00:00:00

Description

In Tidy 5.5.31, the IsURLCodePoint function in attrs.c allows attackers to cause a denial of service (Segmentation Fault), as demonstrated by an invalid ISALNUM argument.

Notes

Author| Note
---|---
tyhicks | As of 2017-08-25, upstream has not had a chance to triage the bug