Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2020-5238
Description:The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the upstream cmark project. The issue has been fixed in version 0.29.0.gfm.1.
Test IDs: 1.3.6.1.4.1.25623.1.0.878377   1.3.6.1.4.1.25623.1.0.878381   1.3.6.1.4.1.25623.1.0.878376   1.3.6.1.4.1.25623.1.0.878383   1.3.6.1.4.1.25623.1.0.878382   1.3.6.1.4.1.25623.1.0.878378   1.3.6.1.4.1.25623.1.0.878432   1.3.6.1.4.1.25623.1.0.878435   1.3.6.1.4.1.25623.1.0.878437   1.3.6.1.4.1.25623.1.0.878438   1.3.6.1.4.1.25623.1.0.878441   1.3.6.1.4.1.25623.1.0.878434   1.3.6.1.4.1.25623.1.0.878430   1.3.6.1.4.1.25623.1.0.878439   1.3.6.1.4.1.25623.1.0.878440   1.3.6.1.4.1.25623.1.0.878433   1.3.6.1.4.1.25623.1.0.878445   1.3.6.1.4.1.25623.1.0.878444  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2020-5238
https://github.com/github/cmark-gfm/security/advisories/GHSA-7gc6-9qr5-hc85
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZGJH2A4VAV54X6NSCNNGSEIGIIY5N2VR/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TCDHBTUFIOYRIS5HAS6PZNBNMB7IOAX3/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WMQFOQQCWOAMQ4I2XIVCVOXXIJ75HDCW/
https://github.com/github/cmark-gfm/commit/85d895289c5ab67f988ca659493a64abb5fec7b4
https://github.com/github/cmark-gfm/commit/85d895289c5ab67f988ca659493a64abb5fec7b4




© 1998-2021 E-Soft Inc. All rights reserved.