CVE-2023-31606 Information

Description

A Regular Expression Denial of Service (ReDoS) issue was discovered in the sanitize_html function of redcloth gem v4.0.0. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.

Reference

https://github.com/jgarber/redcloth https://github.com/e23e/CVE-2023-31606#readme https://github.com/jgarber/redcloth/issues/73