1
Candidate: CVE-2017-13692
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13692
5
https://github.com/htacg/tidy-html5/issues/588
7
In Tidy 5.5.31, the IsURLCodePoint function in attrs.c allows attackers to
8
cause a denial of service (Segmentation Fault), as demonstrated by an
9
invalid ISALNUM argument.
12
tyhicks> As of 2017-08-25, upstream has not had a chance to triage the bug
19
upstream_tidy: needs-triage
20
precise/esm_tidy: not-affected (code not present)
21
trusty_tidy: not-affected (code not present)
22
vivid/ubuntu-core_tidy: DNE
23
xenial_tidy: not-affected (code not present)
28
upstream_tidy-html5: needs-triage
29
precise/esm_tidy-html5: DNE
30
trusty_tidy-html5: DNE
31
vivid/ubuntu-core_tidy-html5: DNE
32
xenial_tidy-html5: DNE
33
zesty_tidy-html5: not-affected (code not present)
34
devel_tidy-html5: not-affected (code not present)