CVE-2022-40896

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-40896

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-40896.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-40896

Aliases

Downstream

DEBIAN-CVE-2022-40896

OESA-2023-1477

OESA-2023-1478

OESA-2023-1479

RHSA-2024:1057

RHSA-2024:2010

UBUNTU-CVE-2022-40896

USN-7128-1

Related

MGASA-2024-0107

Published

2023-07-19T15:15:10.007Z

Modified

2026-02-04T06:23:53.829911Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.

References

Affected packages

Git / github.com/pygments/pygments

Affected ranges

Type: GIT
Repo: https://github.com/pygments/pygments
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

6c187ad83267be9ce142af3fd5c9e670339dc7aa

Affected versions

0.*

0.10

0.11

0.11.1

0.5

0.5.1

0.6

0.7

0.7.1

0.8

0.8.1

0.9

1.*

1.0

1.1

1.1.1

1.2

1.2.1

1.2.2

1.3

1.3.1

1.4

1.5

1.6

1.6rc1

2.*

2.0

2.0.1

2.0.2

2.0rc1

2.1

2.1.1

2.1.2

2.1.3

2.10.0

2.11.0

2.11.1

2.11.2

2.12.0

2.13.0

2.14.0

2.15.0

2.2.0

2.3.0

2.3.1

2.4.0

2.4.1

2.4.2

2.5.0

2.5.1

2.5.2

2.6.0

2.6.1

2.7.0

2.7.1

2.7.2

2.7.3

2.7.4

2.8.0

2.9.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-40896.json"