Debian Package Tracker - ruby-commonmarker

A new upstream version is available: 0.21.0 high

A new upstream version 0.21.0 is available, you should consider packaging it.

Created: 2020-06-29 Last update: 2020-08-15 13:41

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2020-5238: The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the upstream cmark project. The issue has been fixed in version 0.29.0.gfm.1.

Please fix it.

Created: 2020-07-08 Last update: 2020-08-07 06:08

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2020-5238: The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the upstream cmark project. The issue has been fixed in version 0.29.0.gfm.1.

Please fix it.

Created: 2020-07-08 Last update: 2020-08-07 06:08

Multiarch hinter reports 1 issue(s) normal

There are issues with the multiarch metadata for this package.

Created: 2020-03-20 Last update: 2020-08-15 13:44

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2020-07-29 Last update: 2020-07-29 12:34

1 ignored security issue in buster low

There is 1 open security issue in buster.

1 issue skipped by the security teams:

CVE-2020-5238: The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the upstream cmark project. The issue has been fixed in version 0.29.0.gfm.1.

Please fix it.

Created: 2020-07-08 Last update: 2020-08-07 06:08