md4c

Link	package \| bugs open \| bugs closed \| Wiki \| GitHub \| web search
Description	C Markdown parser
Version	0.5.2-1 [extra]

Resolved

Group	Affected	Fixed	Severity	Status	Ticket
AVG-1895	0.4.7-1	0.4.8-1	Medium	Fixed

Issue	Group	Severity	Remote	Type	Description
CVE-2021-30027	AVG-1895	Medium	Yes	Arbitrary code execution	md_analyze_line in md4c.c in md4c 0.4.7 allows attackers to trigger use of uninitialized memory, and cause a denial of service via a malformed Markdown document.