Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Asciidoctor in versions < 1.5.8 allows remote attackers to cause a denial of service (infinite loop). The loop was caused by the fact that Parser.next_block was not exhausting all the lines in the reader as the while loop expected it would. This was happening because the regular expression that detects any list was not agreeing with the regular expression that detects a specific list type. So the line kept getting pushed back onto the reader, hence causing the loop.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Asciidoctor 安全漏洞
Vulnerability Description
Asciidoctor是一款使用Ruby编写的文本处理器,它支持将AsciiDoc内容转换成HTML5、DocBook等格式。 Asciidoctor 1.5.7.1版本中存在安全漏洞,该漏洞源于Parser#next_block没有正确的使用‘while true’语句。远程攻击者可利用该漏洞造成拒绝服务(无限循环)。
CVSS Information
N/A
Vulnerability Type
N/A