Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Address CVE-2023-2318 #5

Closed
jacobwhall opened this issue Jun 28, 2023 · 0 comments · Fixed by #8
Closed

Address CVE-2023-2318 #5

jacobwhall opened this issue Jun 28, 2023 · 0 comments · Fixed by #8
Assignees
@jacobwhall
Labels
security 💂 Issues related to security and vulnerabilities.
Milestone
v0.17.4

Comments

@jacobwhall
Copy link
Owner

A bug was identified in MarkText allowing for arbitrary code execution when pasting in text from a malicious source. For details see marktext#3618

marktext#3621 seeks to fix this issue, we should merge and validate
@jacobwhall jacobwhall self-assigned this Jun 28, 2023
@jacobwhall jacobwhall added this to the v0.17.4 milestone Jun 28, 2023
@axelrindle axelrindle added the security 💂 Issues related to security and vulnerabilities. label Jun 28, 2023
@jacobwhall jacobwhall modified the milestones: v0.17.4, v0.18.0 Jun 30, 2023
@jacobwhall jacobwhall mentioned this issue Jul 1, 2023
Merged
1 task
@jacobwhall jacobwhall modified the milestones: v0.18.0, v0.17.4 Jul 7, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jacobwhall jacobwhall

Labels
security 💂 Issues related to security and vulnerabilities.
Projects
None yet
Milestone
v0.17.4
Development

Successfully merging a pull request may close this issue.

Fix security vulnerability CVE-2023-2318 jacobwhall/marktext
2 participants
@axelrindle @jacobwhall