Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-7vh7-fw88-wj87: Several quadratic complexity bugs may lead to denial of service in Commonmarker

Impact

Several quadratic complexity bugs in commonmarker’s underlying cmark-gfm library may lead to unbounded resource exhaustion and subsequent denial of service.

The following vulnerabilities were addressed:

For more information, consult the release notes for version 0.29.0.gfm.12.

Mitigation

Users are advised to upgrade to commonmarker version 0.23.10.

ghsa
#vulnerability#dos#git#ruby

Several quadratic complexity bugs may lead to denial of service in Commonmarker

Moderate severity GitHub Reviewed Published Aug 8, 2023 in gjtorikian/commonmarker • Updated Aug 8, 2023

ghsa: Latest News

GHSA-hxf5-99xg-86hw: cap-std doesn't fully sandbox all the Windows device filenames