VYPR
High severityNVD Advisory· Published Feb 22, 2023· Updated Mar 11, 2025

markdown-it-py crash on null assertions

CVE-2023-26303

Description

Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
markdown-it-pyPyPI
< 2.2.02.2.0

Affected products

3

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.