Md4c Project » Md4c » 0.2.5 : Security Vulnerabilities, CVEs,
md_is_link_reference_definition_helper in md4c 0.2.5 has a heap-based buffer over-read because md_is_link_label mishandles loop termination.
Max CVSS
9.8
EPSS Score
0.19%
Published
2018-05-29
Updated
2018-06-29
md4c 0.2.5 has a heap-based buffer over-read because md_is_named_entity_contents has an off-by-one error.
Max CVSS
9.8
EPSS Score
0.19%
Published
2018-05-29
Updated
2018-06-29
md4c 0.2.5 has a heap-based buffer overflow in md_merge_lines because md_is_link_label mishandles the case of a link label composed solely of backslash escapes.
Max CVSS
9.8
EPSS Score
0.22%
Published
2018-05-29
Updated
2020-08-24
3 vulnerabilities found