CVE-2015-5147
Published: 14 July 2015
Stack-based buffer overflow in the header_anchor function in the HTML renderer in Redcarpet before 3.3.2 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
Notes
Author | Note |
---|---|
seth-arnold | The report included "Affects: v3.3.0 - v3.3.1", newer than our packages |
Priority
Status
Package | Release | Status |
---|---|---|
ruby-redcarpet Launchpad, Ubuntu, Debian |
wily |
Not vulnerable
|
upstream |
Released
(3.3.2)
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
(trusty was not-affected)
|
|
utopic |
Not vulnerable
|
|
vivid |
Not vulnerable
|