Regular Expression Denial of Service in marked

Published: Sep 3, 2020
Updated: Apr 14, 2023
GHSA: <a href="https://github.com/advisories/GHSA-ch52-vgq2-943f" target="_blank" rel="noopener"> GHSA-ch52-vgq2-943f
Severity: Low
Exploit:

Affected versions of marked are vulnerable to Regular Expression Denial of Service (ReDoS). The _label subrule may significantly degrade parsing performance of malformed input.