Moderate severity vulnerability that affects marked
        
  Moderate severity
        
          GitHub Reviewed
      
        Published
          Jan 4, 2018 
          to the GitHub Advisory Database
          •
          Updated Jan 9, 2023 
      
  
  
      Withdrawn
      This advisory was withdrawn on Dec 2, 2021
  
    
      Description
        Published to the GitHub Advisory Database
      Jan 4, 2018 
    
  
        Reviewed
      Jun 16, 2020 
    
  
        Withdrawn
      Dec 2, 2021 
    
  
        Last updated
      Jan 9, 2023 
    
  
Withdrawn
This advisory has been withdrawn, per NVD: "This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue."
Original Description
A Regular expression Denial of Service (ReDoS) vulnerability in the file marked.js of the marked npm package (tested on version 0.3.7) allows a remote attacker to overload and crash a server by passing a maliciously crafted string.
References