Github

Cmark-gfm

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2024-22051

  • EPSS 7.13%
  • Veröffentlicht 04.01.2024 21:15:10
  • Zuletzt bearbeitet 17.04.2025 19:15:59

CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result in possibly unauthenticated remote attackers to cause heap memory corruption, potentially leading to an information leak or remote c...

7.5

CVE-2023-37463

Exploit
  • EPSS 0.26%
  • Veröffentlicht 13.07.2023 20:15:09
  • Zuletzt bearbeitet 21.11.2024 08:11:45

cmark-gfm is an extended version of the C reference implementation of CommonMark, a rationalized version of Markdown syntax with a spec. Three polynomial time complexity issues in cmark-gfm may lead to unbounded resource exhaustion and subsequent den...

7.5

CVE-2023-24824

Exploit
  • EPSS 0.35%
  • Veröffentlicht 31.03.2023 23:15:07
  • Zuletzt bearbeitet 21.11.2024 07:48:28

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service. This CVE covers quadratic co...

7.5

CVE-2023-26485

Exploit
  • EPSS 0.11%
  • Veröffentlicht 31.03.2023 23:15:07
  • Zuletzt bearbeitet 21.11.2024 07:51:36

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service. This CVE covers quadratic co...

7.5

CVE-2023-22486

Exploit
  • EPSS 0.08%
  • Veröffentlicht 26.01.2023 21:18:12
  • Zuletzt bearbeitet 21.11.2024 07:44:54

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. Versions prior to 0.29.0.gfm.7 contain a polynomial time complexity issue in handle_close_bracket that may lead to unbounded resource exhaustion and su...

5.3

CVE-2023-22485

Exploit
  • EPSS 0.43%
  • Veröffentlicht 24.01.2023 01:15:10
  • Zuletzt bearbeitet 21.11.2024 07:44:54

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. In versions prior 0.29.0.gfm.7, a crafted markdown document can trigger an out-of-bounds read in the `validate_protocol` function. We believe this bug i...

7.5

CVE-2023-22483

Exploit
  • EPSS 0.07%
  • Veröffentlicht 23.01.2023 23:15:10
  • Zuletzt bearbeitet 21.11.2024 07:44:53

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. Versions prior to 0.29.0.gfm.7 are subject to several polynomial time complexity issues in cmark-gfm that may lead to unbounded resource exhaustion and ...

7.5

CVE-2023-22484

Exploit
  • EPSS 0.08%
  • Veröffentlicht 23.01.2023 23:15:10
  • Zuletzt bearbeitet 21.11.2024 07:44:53

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. Versions prior to 0.29.0.gfm.7 are subject to a polynomial time complexity issue in cmark-gfm that may lead to unbounded resource exhaustion and subsequ...

6.5

CVE-2022-39209

  • EPSS 1.17%
  • Veröffentlicht 15.09.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 07:17:47

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. In versions prior to 0.29.0.gfm.6 a polynomial time complexity issue in cmark-gfm's autolink extension may lead to unbounded resource exhaustion and sub...

9.8

CVE-2022-24724

Exploit
  • EPSS 4.19%
  • Veröffentlicht 03.03.2022 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:50:57

cmark-gfm is GitHub's extended version of the C reference implementation of CommonMark. Prior to versions 0.29.0.gfm.3 and 0.28.3.gfm.21, an integer overflow in cmark-gfm's table row parsing `table.c:row_from_string` may lead to heap memory corruptio...