subject:"bug#47351\: python\-pygments@2.7.3 is vulnerable to at least CVE\-2021\-20270"

bug#47351: python-pygments@2.7.3 is vulnerable to at least CVE-2021-20270

2022-03-22 Thread Maxim Cournoyer

Léo Le Bouter writes: > CVE-2021-2027023.03.21 18:15 > An infinite loop in SMLLexer in Pygments > versions 1.5 to 2.7.3 may lead to denial of service when performing > syntax highlighting of a Standard ML (SML) source file, as demonstrated > by input that only contains the "exception" key

bug#47351: python-pygments@2.7.3 is vulnerable to at least CVE-2021-20270

2021-03-23 Thread Léo Le Bouter via Bug reports for GNU Guix

CVE-2021-20270 23.03.21 18:15 An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when performing syntax highlighting of a Standard ML (SML) source file, as demonstrated by input that only contains the "exception" keyword. Upstream version 2.8.1 is not aff