VYPR

RubyGems package

rdiscount

pkg:gem/rdiscount

Vulnerabilities (1)

  • CVE-2026-35201MedApr 6, 2026
    affected >= 1.3.1.1, < 2.2.7.4fixed 2.2.7.4

    Discount is an implementation of John Gruber's Markdown markup language in C. From 1.3.1.1 to before 2.2.7.4, a signed length truncation bug causes an out-of-bounds read in the default Markdown parse path. Inputs larger than INT_MAX are truncated to a signed int before entering t