CVE-2022-40896

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-40896
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-40896.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-40896
Aliases
Downstream
Related
Published
2023-07-19T15:15:10.007Z
Modified
2026-03-20T12:16:40.753772Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.

References

Affected packages

Git / github.com/pygments/pygments

Affected ranges

Type
GIT
Repo
https://github.com/pygments/pygments
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
6c187ad83267be9ce142af3fd5c9e670339dc7aa
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.15.0"
        }
    ]
}

Affected versions

0.*
0.10
0.11
0.11.1
0.5
0.5.1
0.6
0.7
0.7.1
0.8
0.8.1
0.9
1.*
1.0
1.1
1.1.1
1.2
1.2.1
1.2.2
1.3
1.3.1
1.4
1.5
1.6
1.6rc1
2.*
2.0
2.0.1
2.0.2
2.0rc1
2.1
2.1.1
2.1.2
2.1.3
2.10.0
2.11.0
2.11.1
2.11.2
2.12.0
2.13.0
2.14.0
2.15.0
2.2.0
2.3.0
2.3.1
2.4.0
2.4.1
2.4.2
2.5.0
2.5.1
2.5.2
2.6.0
2.6.1
2.7.0
2.7.1
2.7.2
2.7.3
2.7.4
2.8.0
2.9.0

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-40896.json"