PyPI package
markdown-it-py
pkg:pypi/markdown-it-py
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-26303 | — | < 2.2.0 | 2.2.0 | Feb 22, 2023 | Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input. | ||
| CVE-2023-26302 | — | < 2.2.0 | 2.2.0 | Feb 22, 2023 | Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input. |
- CVE-2023-26303Feb 22, 2023affected < 2.2.0fixed 2.2.0
Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input.
- CVE-2023-26302Feb 22, 2023affected < 2.2.0fixed 2.2.0
Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.