EPSS
Percentile
62.2%
calibre is vulnerable to regular expression denial of service(ReDoS). An attacker is able to hang the application via vulnerable html_preprocess_rules in ebooks/conversion/preprocess.py.
html_preprocess_rules
ebooks/conversion/preprocess.py
bugs.launchpad.net/calibre/+bug/1951979
github.com/dwisiswant0/advisory/issues/18
github.com/kovidgoyal/calibre/compare/v5.31.1...v5.32.0
lists.fedoraproject.org/archives/list/[email protected]/message/W7QKFPYJ23KG6WJ5NIYAM4N2NWZCLQGL/
security-tracker.debian.org/tracker/CVE-2021-44686