---

CVE-2021-27291 - log back

CVE-2021-27291 edited at 08 Apr 2021 19:46:22
References	https://gist.github.com/b-c-ds/b1a2cc0c68a35c57188575eb496de5ce + https://github.com/pygments/pygments/pull/1675 https://github.com/pygments/pygments/commit/2e7e8c4a7b318f4032493773732754e418279a14

CVE-2021-27291 edited at 08 Apr 2021 19:45:35
Severity	- Unknown + Low
Remote	- Unknown + Remote
Type	- Unknown + Denial of service
Description	+ In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to regular expression denial of service (ReDoS). By crafting malicious input, an attacker can cause a denial of service.
References	+ https://gist.github.com/b-c-ds/b1a2cc0c68a35c57188575eb496de5ce + https://github.com/pygments/pygments/commit/2e7e8c4a7b318f4032493773732754e418279a14

CVE-2021-27291 created at 08 Apr 2021 19:43:16
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes