In mistune through 2.0.2, support of inline markup is implemented by using regular expressions that can involve a high amount of backtracking on certain edge cases. This behavior is commonly named catastrophic backtracking. https://github.com/lepture/mistune/commit/a6d43215132fe4f3d93f8d7e90ba83b16a0838b2 https://github.com/lepture/mistune/releases
Created python-mistune tracking bugs for this issue: Affects: epel-all [bug 2112231] Affects: fedora-all [bug 2112232]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
This issue has been addressed in the following products: Red Hat Ceph Storage 8.1 Via RHSA-2026:2711 https://access.redhat.com/errata/RHSA-2026:2711
This issue has been addressed in the following products: Red Hat Ceph Storage 7.1 Via RHSA-2026:2769 https://access.redhat.com/errata/RHSA-2026:2769