AVG-1662 log
| Package | python-pygments |
| Status | Fixed |
| Severity | Low |
| Type | denial of service |
| Affected | 2.7.3-1 |
| Fixed | 2.7.4-1 |
| Current | 2.18.0-1 [extra] |
| Ticket | None |
| Created | Sat Mar 6 09:30:29 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-27291 | Low | Yes | Denial of service | In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have... |
| CVE-2021-20270 | Low | Yes | Denial of service | A security issue was found in python-pygments version 1.5 up to 2.7.3. When the SMLLexer gets fed the string "exception", it loops indefinitely, leading to... |