Lucene search
Veracode Vulnerability DatabaseVERACODE:29201HistoryFeb 02, 2021 - 1:30 a.m.
Denial Of Service (DoS)
2021-02-0201:30:48
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.003 Low
EPSS
Percentile
68.7%
pygments is vulnerable to denial of service (DoS). The vulnerability exists through an infinite loop in the SML lexer through the lookahead-only regular expression pattern used.
References
bugzilla.redhat.com/show_bug.cgi?id=1922136
github.com/pygments/pygments/commit/f91804ff4772e3ab41f46e28d370f57898700333
lists.debian.org/debian-lts-announce/2021/05/msg00003.html
lists.debian.org/debian-lts-announce/2021/05/msg00006.html
www.debian.org/security/2021/dsa-4889
www.oracle.com/security-alerts/cpuoct2021.html
Related
nessus
nessus
Debian DLA-2590-1 : pygments security update
2021-03-15 00:00:00
Debian DSA-4870-1 : pygments - security update
2021-03-15 00:00:00
nvd
nvd
CVE-2021-20270
2021-03-23 17:15:13
openvas
openvas
Debian: Security Advisory (DLA-2590-1)
2021-03-13 00:00:00
Debian: Security Advisory (DSA-4870-1)
2021-03-14 00:00:00
Ubuntu: Security Advisory (USN-4885-1)
2021-03-23 00:00:00
redhatcve
redhatcve
CVE-2021-20270
2021-03-05 10:35:25
osv
osv
CVE-2021-20270
2021-03-23 17:15:13
pygments - security update
2021-03-12 00:00:00
pygments - security update
2021-03-12 00:00:00
debian
debian
[SECURITY] [DSA 4870-1] pygments security update
2021-03-12 21:43:51
[SECURITY] [DLA 2590-1] pygments security update
2021-03-12 10:08:47
[SECURITY] [DLA 2648-2] mediawiki regression update
2021-05-06 19:48:46
suse
suse
Security update for python-Pygments (important)
2021-10-31 00:00:00
cvelist
cvelist
CVE-2021-20270
2021-03-23 16:40:22
ubuntu
ubuntu
Pygments vulnerability
2021-03-22 00:00:00
Pygments vulnerabilities
2023-08-14 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-20270 affecting package python-pygments 2.4.2-6
2021-04-06 23:50:13
alpinelinux
alpinelinux
CVE-2021-20270
2021-03-23 17:15:13
ubuntucve
ubuntucve
CVE-2021-20270
2021-03-09 00:00:00
prion
prion
Input validation
2021-03-23 17:15:00
github
github
Infinite Loop in Pygments
2021-04-20 16:35:47
cve
cve
CVE-2021-20270
2021-03-23 17:15:13
debiancve
debiancve
CVE-2021-20270
2021-03-23 17:15:13
almalinux
almalinux
Moderate: python36:3.6 security and bug fix update
2021-11-09 08:24:37
Moderate: resource-agents security, bug fix, and enhancement update
2021-11-09 08:20:04
Moderate: python27:2.7 security update
2021-11-09 08:24:39
oraclelinux
oraclelinux
python36:3.6 security and bug fix update
2021-11-16 00:00:00
resource-agents security update
2021-11-19 00:00:00
python27:2.7 security update
2021-11-16 00:00:00
rocky
rocky
python36:3.6 security and bug fix update
2021-11-09 08:24:37
resource-agents security, bug fix, and enhancement update
2021-11-09 08:20:04
python27:2.7 security update
2021-11-09 08:24:39
freebsd
freebsd
py-pygments -- multiple DoS vulnerabilities
2021-03-17 00:00:00
redhat
redhat
(RHSA-2021:4139) Moderate: resource-agents security, bug fix, and enhancement update
2021-11-09 08:20:04
(RHSA-2021:4150) Moderate: python36:3.6 security and bug fix update
2021-11-09 08:24:37
mageia
mageia
Updated mediawiki packages fix security vulnerabilities
2021-05-23 04:30:51
photon
photon
Critical Photon OS Security Update - PHSA-2021-0253
2021-06-15 00:00:00
Critical Photon OS Security Update - PHSA-2021-3.0-0253
2021-06-16 00:00:00
Critical Photon OS Security Update - PHSA-2021-0047
2021-06-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package mediawiki version 1.35.2-alt1
2021-04-24 00:00:00
ibm
ibm