Skip to content

Commit 89fa423

Browse files
jasnowjasnow
authored
Combined duplicate commonmarker advisories (PR #585) (#924)
1 parent 5000a10 commit 89fa423

File tree

2 files changed

+3
-38
lines changed

2 files changed

+3
-38
lines changed

gems/commonmarker/CVE-2024-22051.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -2,16 +2,16 @@
22
gem: commonmarker
33
cve: 2024-22051
44
ghsa: fmx4-26r3-wxpf
5-
url: https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x
5+
url: https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-fmx4-26r3-wxpf
66
title: Integer overflow in cmark-gfm table parsing extension leads to heap memory
77
corruption
88
date: 2022-03-03
99
description: |
10-
1110
### Impact
1211
1312
CommonMarker uses `cmark-gfm` for rendering
1413
[Github Flavored Markdown](https://github.github.com/gfm/).
14+
1515
An [integer overflow in `cmark-gfm`'s table row parsing](https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x)
1616
may lead to heap memory corruption when parsing tables who's marker
1717
rows contain more than UINT16_MAX columns. The impact of this heap
@@ -47,7 +47,7 @@ description: |
4747
If you have any questions or comments about this advisory:
4848
4949
* Open an issue in [CommonMarker](http://github.com/gjtorikian/commonmarker)
50-
cvss_v3: 8.8
50+
cvss_v3: 9.8
5151
patched_versions:
5252
- ">= 0.23.4"
5353
related:

gems/commonmarker/GHSA-fmx4-26r3-wxpf.yml

Lines changed: 0 additions & 35 deletions
This file was deleted.

0 commit comments

Comments
 (0)