Skip to content

[GHSA-5239-wwwm-4pmq] Pygments has Regular Expression Denial of Service (ReDoS) due to Inefficient Regex for GUID Matching#7264

Merged
advisory-database[bot] merged 1 commit intonzlaura/advisory-improvement-7264from
nzlaura-GHSA-5239-wwwm-4pmq
Mar 30, 2026
Merged

[GHSA-5239-wwwm-4pmq] Pygments has Regular Expression Denial of Service (ReDoS) due to Inefficient Regex for GUID Matching#7264
advisory-database[bot] merged 1 commit intonzlaura/advisory-improvement-7264from
nzlaura-GHSA-5239-wwwm-4pmq

Conversation

@nzlaura
Copy link
Copy Markdown

@nzlaura nzlaura commented Mar 29, 2026

Updates

  • Affected products
  • CVSS v3
  • CVSS v4
  • Severity

Comments
Patched version has been released: https://github.com/pygments/pygments/releases/tag/2.20.0

@github-actions github-actions bot changed the base branch from main to nzlaura/advisory-improvement-7264 March 29, 2026 18:35
@advisory-database advisory-database bot merged commit 8600437 into nzlaura/advisory-improvement-7264 Mar 30, 2026
4 checks passed
@advisory-database
Copy link
Copy Markdown
Contributor

advisory-database bot commented Mar 30, 2026

Hi @nzlaura! Thank you so much for contributing to the GitHub Advisory Database. This database is free, open, and accessible to all, and it's people like you who make it great. Thanks for choosing to help others. We hope you send in more contributions in the future!

@advisory-database advisory-database bot deleted the nzlaura-GHSA-5239-wwwm-4pmq branch March 30, 2026 14:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nzlaura