Vulnerabilities > Discount Project

DATE CVE VULNERABILITY TITLE RISK
2018-06-15 CVE-2018-12495 Out-of-bounds Read vulnerability in multiple products
The quoteblock function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
local
low complexity
discount-project debian CWE-125
5.5
2018-05-26 CVE-2018-11504 Out-of-bounds Read vulnerability in multiple products
The islist function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2html.
local
low complexity
discount-project debian CWE-125
5.5
2018-05-26 CVE-2018-11503 Out-of-bounds Read vulnerability in multiple products
The isfootnote function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2html.
local
low complexity
discount-project debian CWE-125
5.5
2018-05-25 CVE-2018-11468 Out-of-bounds Read vulnerability in multiple products
The __mkd_trim_line function in mkdio.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2html.
local
low complexity
discount-project debian CWE-125
5.5