Vulnerability in Leandrocp Mdex

CVE-2026-53428

Memory Allocation with Excessive Size Value vulnerability in leandrocp mdex allows an unauthenticated attacker to cause a denial of service through unbounded memory allocation. comrak_nif::lumis_adapter::LumisAdapter::parse_highlight_line…

Affected products

Leandrocp Mdex — versions 0.11.0, a8407611715d1ead35fbcba79c72cef1b7df387b
Leandrocp Mdex_native — versions 0.1.0, 956528c5e31746253347029e810a969ab916fd27

Weakness classification (CWE)

CWE-789

References

6b3ad84c-e1a6-4bf7-a703-f496b71e49db (related, vendor-advisory)
6b3ad84c-e1a6-4bf7-a703-f496b71e49db (related)
6b3ad84c-e1a6-4bf7-a703-f496b71e49db (related)
6b3ad84c-e1a6-4bf7-a703-f496b71e49db (patch)