rdiscount has an Out-of-bounds Read — CVE-2026-35201
GitHub · GitHub · CVE-2026-35201
ID
CVE-2026-35201
CVE-2026-35201
Date
Updated
Activity
Source
GitHub
GitHub
Vendor
GitHub
GitHub
Threat
medium
medium
CVSS
5.9
5.9
EPSS
0.00057
0.00057
Summary
### Summary A signed length truncation bug causes an out-of-bounds read in the default Markdown parse path. Inputs larger than `INT_MAX` are truncated to a signed `int` before entering the native parser, allowing the parser to read past the end of the supplied buffer and crash the process ### Details In both public entry points: - `ext/rdiscount.c:97` - `ext/rdiscount.c:136` `RSTRING_LEN(text)` is passed directly…
Risk context
- Reported severity or threat level: medium.
- Reported CVSS score: 5.9 out of 10.
- Reported EPSS value: 0.00057.
- Review exposure for the affected product or family: rubygems: rdiscount.
Product
rubygems: rdiscount
What to do
General, cautious steps (verify details in the official source):
- Review exposure and plan remediation based on risk and environment.
- Identify affected product versions in your inventory and verify whether you are impacted.
- Apply vendor patches/updates or recommended mitigations as soon as available.
- Read the official advisory for exact affected versions and remediation steps.
Official advisory
Evidence and provenance
- Canonical advisory ID
- CVE-2026-35201
- Source
- GitHub
- Vendor
- GitHub
- Published by source
- 2026-04-06
- Last source activity
- 2026-05-13
- Curated by
- hlukh.ch