Low severityNVD Advisory· Published Apr 26, 2025· Updated Apr 29, 2025
CVE-2025-46656
CVE-2025-46656
Description
python-markdownify (aka markdownify) before 0.14.1 allows large headline prefixes such as in addition to through . This causes memory consumption.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
markdownifyPyPI | < 0.14.1 | 0.14.1 |
Affected products
2- python-markdownify/python-markdownifyv5Range: 0
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-7mpr-5m44-h73rghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-46656ghsaADVISORY
- github.com/matthewwithanm/python-markdownify/commit/959561879693bf4a576f99c6733b50b01186aa08ghsaWEB
- github.com/matthewwithanm/python-markdownify/compare/0.14.0...0.14.1ghsaWEB
- github.com/matthewwithanm/python-markdownify/issues/143ghsaWEB
News mentions
0No linked articles in our index yet.