What the vulnerability does

01Description

An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when performing syntax highlighting of a Standard ML (SML) source file, as demonstrated by input that only contains the "exception" keyword.

Key dates

02Disclosure timeline

March 23, 2021 CVE published
August 3, 2024 Record updated