CVE-2023-22484

Type:

Unavailable / Other

Severity:

None

Publication date:

01/23/2023

Last modified:

02/02/2023

Description

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. Versions prior to 0.29.0.gfm.7 are subject to a polynomial time complexity issue in cmark-gfm that may lead to unbounded resource exhaustion and subsequent denial of service. This vulnerability has been patched in 0.29.0.gfm.7.

Impact

Access Vector: Unavailable

Access Complexity: Unavailable

Authentication: Unavailable

Impact Type: Unavailable

Vulnerable software and versions

cpe:2.3:a:github:cmark-gfm:*:*:*:*:*:*:*:*

To consult the complete list of products and versions see this page

References to Advisories, Solutions, and Tools

https://github.com/github/cmark-gfm/security/advisories/GHSA-24f7-9frr-5h2r (Source: MISC)

Explanation of fields

Corporate access

CVE-2023-22484