CVE-2020-5238

CVE-2020-5238

The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the upstream cmark project.

The issue has been fixed in version 0.29.0.gfm.1.

Source: CVE-2020-5238

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다