•  
      request #22603 Client denial of service via the syntax highlighting of ASCIIDoc content
    Infos
    #22603
    Thomas Gerbet (tgerbet)
    2021-08-05 10:53
    2021-08-04 17:24
    24052
    Details
    Client denial of service via the syntax highlighting of ASCIIDoc content

    A ReDoS issue has been identified in PrismJS, the library Tuleap uses to do the syntax highlighting work.

    Advisory: https://github.com/advisories/GHSA-gj77-59wh-66hg

    Other
    Empty
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Thomas Gerbet (tgerbet)
    Closed
    2021-08-05
    Attachments
    Empty
    References

    Follow-ups

    User avatar

    Integrated into Tuleap 12.11.99.120


    • Status changed from Under review to Closed
    • Connected artifacts
    • Close date set to 2021-08-05