rpm package
almalinux/pandoc
pkg:rpm/almalinux/pandoc
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-24824 | — | < 2.0.6-7.el8_10 | 2.0.6-7.el8_10 | Mar 31, 2023 | cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service. This CVE covers quadratic complexity issues when parsing t | ||
| CVE-2022-24724 | — | < 2.0.6-6.el8_6 | 2.0.6-6.el8_6 | Mar 3, 2022 | cmark-gfm is GitHub's extended version of the C reference implementation of CommonMark. Prior to versions 0.29.0.gfm.3 and 0.28.3.gfm.21, an integer overflow in cmark-gfm's table row parsing `table.c:row_from_string` may lead to heap memory corruption when parsing tables who's ma | ||
| CVE-2020-5238 | — | < 2.0.6-5.el8 | 2.0.6-5.el8 | Jul 1, 2020 | The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the ups |
- CVE-2023-24824Mar 31, 2023affected < 2.0.6-7.el8_10fixed 2.0.6-7.el8_10
cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service. This CVE covers quadratic complexity issues when parsing t
- CVE-2022-24724Mar 3, 2022affected < 2.0.6-6.el8_6fixed 2.0.6-6.el8_6
cmark-gfm is GitHub's extended version of the C reference implementation of CommonMark. Prior to versions 0.29.0.gfm.3 and 0.28.3.gfm.21, an integer overflow in cmark-gfm's table row parsing `table.c:row_from_string` may lead to heap memory corruption when parsing tables who's ma
- CVE-2020-5238Jul 1, 2020affected < 2.0.6-5.el8fixed 2.0.6-5.el8
The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the ups