漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Uncontrolled recursion over deeply nested Markdown crashes the BEAM in mdex
Vulnerability Description
Uncontrolled Recursion vulnerability in leandrocp mdex allows denial of service via deeply nested Markdown input. mdex converts between an Elixir %MDEx.Document{} struct and Comrak's internal AST using two mutually recursive Rust functions, ex_document_to_comrak_ast and comrak_ast_to_ex_document, in the NIF source file document.rs. Neither function enforces a maximum nesting depth, so the recursion depth is bounded only by the structure of the input. An attacker who can get a Markdown document rendered (for example through MDEx.parse_document!/1 or MDEx.to_html/1) can supply a document with thousands of nested block quotes, which drives unbounded recursion across the NIF boundary and exhausts the native C stack. Because the resulting stack overflow is an uncatchable SIGSEGV raised inside a NIF, it cannot be contained by the Erlang runtime. It terminates the operating system process running the BEAM, killing every Elixir and Erlang process on the node, not just the caller that triggered the render. No authentication or special privileges are required. The vulnerable conversion code was extracted from mdex into the separate mdex_native package starting in mdex 0.12.3. This issue affects mdex from 0.3.0 before 0.12.3 and mdex_native from 0.1.0 before 0.2.3.
CVSS Information
N/A
Vulnerability Type
未经控制的递归
Vulnerability Title
leandrocp mdex 资源管理错误漏洞
Vulnerability Description
leandrocp mdex是加拿大leandrocp个人开发者的一个依赖解析工具。 leandrocp mdex 0.3.0至0.12.3之前版本存在资源管理错误漏洞,该漏洞源于NIF源文件document.rs中ex_document_to_comrak_ast和comrak_ast_to_ex_document两个递归函数未强制执行最大嵌套深度,可能导致通过特制的深层嵌套Markdown输入导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A