md4c

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description C Markdown parser
Version 0.4.8-1 [extra]

Open

Group Affected Fixed Severity Status Ticket
AVG-1895 0.4.7-1 Medium Vulnerable
Issue Group Severity Remote Type Description
CVE-2021-30027 AVG-1895 Medium Yes Arbitrary code execution
md_analyze_line in md4c.c in md4c 0.4.7 allows attackers to trigger use of uninitialized memory, and cause a denial of service via a malformed Markdown document.