Lucene search
VulnCheckCVELIST:CVE-2024-22051HistoryJan 04, 2024 - 8:27 p.m.
CVE-2024-22051 CommonMarker Integer Overflow Vulnerability
2024-01-0420:27:22
CWE-190
VulnCheck
www.cve.org
5
cve-2024-22051
commonmarker
integer overflow
vulnerability
remote code execution
heap memory corruption
information leak
CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result in possibly unauthenticated remote attackers to cause heap memory corruption, potentially leading to an information leak or remote code execution, via parsing tables with marker rows that contain more than UINT16_MAX columns.
CNA Affected
[
{
"collectionURL": "https://rubygems.org",
"defaultStatus": "unaffected",
"packageName": "commonmarker",
"versions": [
{
"lessThan": "0.23.4",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]References
github.com/advisories/GHSA-fmx4-26r3-wxpf
github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x
github.com/gjtorikian/commonmarker/commit/ab4504fd17460627a6ab255bc3c63e8e5fc6aed3
github.com/gjtorikian/commonmarker/security/advisories/GHSA-fmx4-26r3-wxpf
vulncheck.com/advisories/vc-advisory-GHSA-fmx4-26r3-wxpf
Related
rubygems
rubygems
prion
prion
Integer overflow
2024-01-04 21:15:00
nvd
nvd
CVE-2024-22051
2024-01-04 21:15:10
veracode
veracode
Integer Overflow
2024-01-05 08:01:10
redhatcve
redhatcve
CVE-2024-22051
2024-01-05 01:02:21
cve
cve
CVE-2024-22051
2024-01-04 21:15:10
debiancve
debiancve
CVE-2024-22051
2024-01-04 21:15:10
github
github
osv
osv
Integer overflow in cmark-gfm table parsing extension leads to heap memory corruption
2022-03-03 20:28:47
CVE-2022-24724
2022-03-03 20:15:07
CVE-2024-22051
2024-01-04 21:15:10
ubuntucve
ubuntucve
CVE-2024-22051
2024-01-04 00:00:00