AVG-1662 log
Package | python-pygments |
Status | Fixed |
Severity | Low |
Type | denial of service |
Affected | 2.7.3-1 |
Fixed | 2.7.4-1 |
Current | 2.18.0-3 [extra] |
Ticket | None |
Created | Sat Mar 6 09:30:29 2021 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2021-27291 | Low | Yes | Denial of service | In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have... |
CVE-2021-20270 | Low | Yes | Denial of service | A security issue was found in python-pygments version 1.5 up to 2.7.3. When the SMLLexer gets fed the string "exception", it loops indefinitely, leading to... |